-
Passkey Authentication
Last updated: Thursday, February 22, 2024
Published in: CODE Magazine: 2024 - March/April
Sahil discusses the adoption of FIDO2 and WebAuthn standards to eliminate passwords and how to implement passkey authentication in your web application, demonstrating the client-side and server-side aspects of the process through an end-to-end application.
-
Web API Authentication
Last updated: Friday, December 22, 2023
Published in: CODE Magazine: 2024 - January/February
In this article, Sahil explores the intricacies of validating access tokens in web API authentication. They emphasize the importance of identity and security in this process and discuss the parties involved, such as the identity provider, the relying party (RP), and the web API. The article delves into topics like acquiring and caching access tokens, as well as validating their signatures and claims. Sahil also touches on best practices for storing and managing refresh tokens.
-
Web Application Authentication
Last updated: Tuesday, November 28, 2023
Published in: CODE Magazine: 2023 - November/December
Sahil takes a look at web app authentication in OIDC. Read a good, quick synopsis of OIDC: tokens, endpoints, and grants.
-
Authentication in Laravel, Part 2: Token Authentication
Last updated: Tuesday, August 29, 2023
Published in: CODE Magazine: 2023 - September/October
In Part 2 of Bilal’s Authentication series, you’ll learn Token authentication in Laravel, which involves exchanging a token between the client and server for authentication, instead of sending credentials with each request. Laravel offers two packages for Token Authentication: Laravel Passport and Laravel Sanctum.
-
Authentication in Laravel: Part 1
Last updated: Tuesday, October 22, 2024
Published in: CODE Magazine: 2023 - May/Jun
Using Laravel’s built-in authentication to secure your application is simpler than you’d think. Bilal shows you how.
-
FIDO2 and WebAuthn
Last updated: Wednesday, August 31, 2022
Published in: CODE Magazine: 2022 - September/October
If your system relies on username and passwords for security, you may be in trouble. Sahil describes how an application can securely trust a user's identity using modern software and FIDO2 with WebAuthn in Azure.
-
YARP: I Did It Again
Last updated: Wednesday, August 31, 2022
Published in: CODE Magazine: 2022 - September/October
Yet Another Reverse Proxy (YARP) might sound like something you’d rather not do, but Shawn shows you how it can improve performance if you’ve got microservices, load balancing issues, URL writing, or tight security issues. Learn "what is a reverse proxy?" and how to configure a reverse proxy.
-
Eliminate Secrets from Your Applications with Azure Managed Identity
Last updated: Wednesday, August 31, 2022
Published in: CODE Magazine: 2021 - July/August
When it’s time to deploy your app, and you’re using Azure SQL and Azure, you’re going to want to use Azure Managed Identity to authenticate and access the database. Julie shows you that it’s not even a little bit scary.
-
Modern Authentication
Last updated: Wednesday, August 31, 2022
Published in: CODE Magazine: 2020 - May/June
What does authentication mean in for applications working at Internet scale? Learn common tenets for the modern world (2020s).