The author updates core pages like About, FAQ, and Home for the JourneyInbox SaaS app, focusing on UI layout and content.
Explores a multi-tenancy security design pattern: external authentication with local authorization, using IDP tokens and SAGA for signup.
A tutorial on implementing API Key authentication in ASP.NET Core for server-to-server communication, including code examples.
A talk on implementing flexible, permission-based authorization in ASP.NET Core to overcome limitations of traditional role/claim-based systems.
A developer's perspective on the challenges of implementing authorization (authz) in software, balancing minimal effort with security needs.
Announcing django-denied, a Django package that enforces authorization by denying all views by default for enhanced security.
The author creates a new open-source Django package called 'django-denied' for handling authorization, extracted from a SaaS project.
A comprehensive guide to implementing OAuth 2.0 authorization with multiple providers (Google, GitHub, Amazon) in a Node.js backend using Passport.js.
A comprehensive guide to all OAuth 2.0 grant types, explaining their flows and use cases for secure application authorization.
Jakarta Security 3's major update introduces OpenID Connect authentication, alongside its core API and underlying SPIs for Jakarta EE.
A technical guide explaining how to implement authentication and authorization in any backend language or framework, covering user models, signup/login routes, and session vs JWT auth.
A guide to implementing the OAuth 2.0 PKCE authorization flow for secure access in single-page and mobile applications.
Explains how to customize HTTP responses for failed authorization in ASP.NET Core 5.0 using the IAuthorizationMiddlewareResultHandler interface.
A guide to securing Azure Functions using API keys, covering different authorization levels and practical verification with Postman.
Guide to implementing Jakarta Security (formerly Java EE Security) with Soteria and Exousia on Apache Tomcat 10, covering dependencies and configuration.
Explains the core concepts of authentication (login/signup) and authorization (sessions vs. JWTs) in web development.
A guide to Django's user authentication and authorization system, covering setup, the User model, and the login process.
Explains the differences between cookies and tokens for API authentication, covering OAuth, JWT, and deployment considerations.
A tutorial on implementing endpoint authorization for a GraphQL API built with GraphQL.NET and ASP.NET Core 3.1.
An overview of Django's built-in user authentication system, covering authentication, authorization, and setup.
