Authentication mechanisms for a web developer
Cao, Quang Tri (2023)
2023
All rights reserved. This publication is copyrighted. You may download, display and print it for Your own personal use. Commercial use is prohibited.
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-202304307014
https://urn.fi/URN:NBN:fi:amk-202304307014
Tiivistelmä
Advancement in web development technologies has brought forth the appearance of complete standalone web applications. They are known as single page applications (SPA) which are executed completely in the browser and only rely on the server for data. Because code running on a web browser can be inspected by anyone, incorporating authentication and authorization in SPA-style web applications becomes challenging. In other words, storing user credentials on the browser code seems not secure at all.
The thesis explores and documents the token-based solution as well as some other authentication and authorization mechanisms. In addition, a web application utilizing the token-based method was implemented, through which the outcome of the author’s learning process is also demonstrated.
The project ran well, and users can login. Many new terms had to be studied thoroughly and problems arose while building the project. However, all these obstacles provided a great learning opportunity for the author. A better understanding of authentication, authorization and different authentication approaches was gained through in the thesis.
The thesis explores and documents the token-based solution as well as some other authentication and authorization mechanisms. In addition, a web application utilizing the token-based method was implemented, through which the outcome of the author’s learning process is also demonstrated.
The project ran well, and users can login. Many new terms had to be studied thoroughly and problems arose while building the project. However, all these obstacles provided a great learning opportunity for the author. A better understanding of authentication, authorization and different authentication approaches was gained through in the thesis.