CLASS 08

REVIEW, RESEARCH AND DISCUSS

• HOME

When is Basic Authorization used vs. Bearer Authorization?

• The basic authentication is used when signing the user uses a username and password or string based authorization but the bearer authentication is used when the user wants to access data then its authenticated using token.

What does the JSON Web Token package do?

• Is a third party library used to generate token and the used to decode the tokens via a json object.

What considerations should we make when creating and storing a SECRET?

• Never save unencrypted secret files before encrypting in a plain text.

TERM:

encryption

• is the process of hiding data or imformation for others to read

token

• is a piece of data used in network communication to identify a series of related message exchanges

bearer

• is the holder of the token or other authentication data.

secret

• is a password or key that you need to decode the token

JSON web token

• is a way to encode claims in a JSON document that is the signed.

HOME