• Variables ▾
• JS Variable scope: var vs. let vs. const
• JavaScript ▾
• Add JavaScript to the Page
• JavaScript Data Structures and Algorithms Interview Questions
• MERN Stack ▾
• Authentication and Authorization with Json Web Token
• React JS ▾
• React.js Interview Questions
• Adding a social user authentication to a web application
• Add Redux to React
• Add FontAwsome to React App
• Cheat Sheets ▾
• Typescript Cheet Sheet
• IntelliJ and Eclipse Windows/Mac Shortcuts
• Git Cheat Sheet
• Unix/Linux vs Windows Command Line Cheat Sheet
• Interview Questions ▾
• JavaScript Interview Questions
• Jira Interview Questions
• Questions and answers for an interview with a recruiter and a hiring manager
• Top Jenkins Interview Questions
• Maven Interview Questions
• Test Cases for QA Software Tester Interview
• Top QA Software Tester Behavioral Interview Questions
• Top QA Software Tester Interview Questions
• Data Structures and Algorythms Interview Questions and Answers
• TestNG Interview Questions
• Selenium and Appium Interview Questions
• API, HTTP, and Networking Interview Questions
• Git and GitHub Interview Questions
• Java Interview Questions
• Java OOPS (Object Oriented Programming) Concept Interview Questions
• SQL Interview Questions (Query)
• SQL Interview questions (Theoretical)
• Selenium Web Driver ▾
• QA Bootcamps in San Francisco Bay Area (and online)
• Selenium Web Driver Selectors/Locators
• Wordpress ▾
• WordPress editor jumps on attempt to enter characters – Fixed
• QA Software Testing ▾
• Free practice tests and mock exams to pass ISTQB Agile Extension Certification Exam
• Which programming languages are good to know for QA Software Testers
• Technical Certifications that are highly beneficial for QA Software Tester Career
• Testing tools for QA Professionals
• Bug (incident, anomaly, defect) Report
• Java ▾
• Compile time vs Run-time error
• Access/ Visibility Modifiers In Java
• Art Inspirations ▾
• Chinese chameleon and invisible man Liu Bolin – City Camouflage
• Web Design ▾
• CSS vertical fading line with gradient and css gradient border
• CSS fading horizontal line with gradient and gradient border
• How to prevent div from falling below under another div on window resize

Authentication and Authorization with Json Web Token

By YuwebDesign

How JWT works

When a user successfully signs in using their credentials,
the server side generates a JWT signed with a secret key and a unique user detail.

Then, this token is returned to the requesting client
to be saved locally either in localStorage, sessionStorage, or a cookie in the browser,
essentially handing over the responsibility of maintaining user state to the client side.

For HTTP requests made following a successful sign-in,
especially requests for API endpoints that are protected and have restricted access,
the client side has to attach this token to the request.

More specifically, the JSON Web Token must be included in the request Authorization header as a Bearer:

Authorization: Bearer <JSON Web Token>

When the server receives a request for a protected API endpoint,
it checks the Authorization header of the request for a valid JWT,
then verifies the signature to identify the sender and ensures the request data was not corrupted.

If the token is valid, the requesting client is given access to the associated operation or resource,
otherwise an authorization error is returned.

When a user signs in (e.g. with email and password) the backend will generate a signed JWT
with the user’s ID and with a secret key available only on the server.

This token will then be required for verification when a user tries to access any protected data
(e.g., view any user profiles, update their account details, or delete their user account).

Resources: Full Stack React Projects by Shama Hoque