Tag
authentication
2 articles tagged with “authentication”
AIAI-SearchAPI-gatewayASP.NET-CoreAzure-APIMAzure-OpenAICIClaudeCoTCopilotCosmos-DBCursorDORAEvent-GridGPTGemmaGitFlowGitHubHPAICLJSONJSON-modeLLMLLM-securityMCPMistralModel-Context-ProtocolOIDCOmitPartialPhiPickPineconeQdrantRAGReActRecordSDKSLISLMSLOSemantic-KernelService-BusWindsurfa-staragentsaggregationaiai-gatewayaksalertingalgorithmsapi-designapi-gatewayapi-versioningapimapp-routerapp-serviceappsecarchitecturearm-templatesaspnet-coreaspnetcoreasyncauditauthenticationauthorizationautomationazureazure-front-doorazure-functionsazure-openaiazure-policyazure-storagebddbenchmarksbest-practicesbfsbicepbinary-searchbranchingbstcache-componentscachingcap-theoremchain-of-thoughtchatbotci-cdci-optimizationcicdclean-architecturecloudcloud-securitycloudeventscode-reviewcoding-agentscomparisoncompliancecomposeconcurrencyconcurrent-renderingconditional-typesconsistencyconsistent-hashingconstraintsconsumer-drivencontainerscontextcontract-testingcosmos-dbcost-controlcost-optimizationcoveragecqrscsharpcvecypressdapperdastdata-fetchingdatabasesdataloaderddddecision-frameworkdependency-injectiondependency-scanningdeployment-slotsdeploymentsdeprecationdesign-patternsdevopsdfsdijkstradiscriminated-unionsdistributivedockerdocumentationdotnetdotnet-9drift-detectiondynamic-programminge2e-testingef-coreef-core-9embeddingsengineeringenvironmentserror-budgetevaluationevent-drivenevent-gridevent-hubseventingexamplesfeature-flagsfederationfew-shotfiberfine-tuningflaky-testsflex-consumptionfrontendfunction-callinggenericsgitgithub-actionsgolden-signalsgpt-4ographgraphqlgrpchclhealth-checksheaphookshotchocolatehttphttp2http3hybridcacheiacidempotencyidentityin-context-learningindexesinferinferenceinfrastructureintegrationintegration-testingintrosortisolationjailbreakjestjoinsjotaijsonbjwtk8skey-remappingkey-vaultkiotaknapsackknowledge-basekuberneteslanguagelegacy-codelinqload-balancinglower-boundmanaged-identitymapped-typesmaterialized-viewsmemoizationmemorymergemessage-queuemessagingmetricsmicroservicesminimal-apismockingmocksmodel-routingmodulesmongodbmonitoringmswmulti-agentmulti-stage-buildsmulti-tenantmvccnarrowingnetwork-securitynextjs-16normalizationnosqloauthoauth2observabilityoidcopaopenapiorchestrationoutput-formatowasppaaspactpactflowpage-objectsparsingpartitioningperformancepersonal-AIpgvectorpineconepipelineplanningplaywrightpluginspolicy-as-codepollypostgresqlproductionprompt-designprompt-engineeringprompt-injectionprotobufpulumipythonqualityquality-gatesquantizationqueuesragrate-limitingreactreact-19react-compilerreact-internalsreact-queryreact-server-componentsrealtimereasoningrecursionrecursive-typesred-blackred-green-refactorred-teamingredisregression-testingrelease-managementresource-limitsrestreusable-workflowsrlsrolling-updatesruntime-safetysaga-patternsastsbomscaleschemaschema-designsdlcsecrets-managementsecuritysecurity-testingself-consistencyserializableserver-actionsserverlessservice-busshardingshortest-pathsignalrsnapshot-testingsoftware-designsortingspiessqlstabilitystate-managementstreamsstridestructured-outputstubssupertestsupply-chainsystem-designtail-calltanstack-querytask-framingtddtemplate-literalsterraformtest-architecturetest-doublestest-pyramidtestcontainerstestingtesting-patternstesting-strategythreat-modelingtoken-buckettoken-economicstokenstool-callingtool-usetopological-sorttransactionstreestrietrunk-basedtype-guardstype-predicatestype-systemtype-transformstypescriptunit-testingutility-typesvalidationvalkeyvaultvector-dbvector-searchversion-controlvisual-regressionvitestvulnerabilitiesweaviateweb-apiweb-securitywebsocketswindow-functionswiremockworkload-identityworkspacesxunityarpzero-shotzero-trustzodzustand
Security Engineering
JWT Authentication: From Basics to Best Practices
Intermediate
How JSON Web Tokens work, signing algorithms (HS256 vs RS256), common vulnerabilities (algorithm confusion, none attack), token storage, and refresh token patterns.
13 min
Read →Security Engineering
OAuth 2.0 & OIDC: Authorization and Identity Explained
Intermediate
OAuth 2.0 grant types, PKCE, OpenID Connect layers, access vs ID tokens, token introspection, and securing SPAs and APIs with modern auth flows.
15 min
Read →
