All the previous JWT tutorials use a cryptographic signing to verify the token’s validity. Created tokens didn’t use any payload encryption. In case an attacker has access to a user’s JWT, they can seamlessly read the token payload. Verifying JWTs ensures that the requesting user sends a …
Continue ReadingAsync functions are part of Node.js since version 7.6. They received a boost in attention with the stable release of Node.js v8 because it’s one of the major new features. When using async functions in your projects, you may encounter situations where you want to serialize …
Continue Reading
Starting out with JSON Web Token (JWT) is pretty straightforward. Typically, you’ll create a JWT with a secret key and verify it using the same secret. In cryptography, this is a symmetric signature. Most of the tutorials on the Internet use symmetric algorithms because it’s a simple way …
Continue ReadingNPM has large ecosystem of JavaScript modules. During development, you may add dependencies to your project and may not need them anymore at a later point. Using the NPM CLI to install dependencies will add the module to your project dependencies by adding it to your package.json file. In …
Continue ReadingYou’re automatically using claims when using JWTs in your application. JWT Claims are an important piece in the JSON web token specification. Claims represent the data you’re storing inside the JWT. A JWT claim set is the JWT payload consisting of more than one key-value-pair. Imagine a JWT …
Continue ReadingSerializing JavaScript to JSON is useful in various situations. Calling JSON.stringify(data) returns a JSON string of the given data. This JSON string doesn’t include any spaces or line breaks by default. It’s hard to read when writing the serialized JSON to a file. What you can …
Continue ReadingString replacements are a common task in app development. JavaScript has powerful string methods and you intentionally think of string.replace() when reading the headline. Good catch, but there’s a trick to replacing all appearances when using it. Read on to get the details! {{outline}} String.replace(): One Appearance …
Continue Reading
We ran into limitations with a third-party library providing the authentication schemes to authenticate requests with a refresh token. The problem: the used package happens to support the needed functionality, it’s not created with the intent to support it. In this tutorial, you’ll replace this package with your …
Continue ReadingFind interesting tutorials and solutions for your problems.