February 21, 2023

Authorization on Rails (Ep. 540)

Sam Scott, cofounder and CTO of Oso, joins the home team to talk about what makes authorization a challenge, the difference between authentication and authorization, and what zombies taught him about web development.

Eira May

0 comments

authentication

December 22, 2022

The complete guide to protecting your APIs with OAuth2 (part 1)

OAuth2 is one of the most popular specifications for API authentication today, though wrapping your head around it can be a challenge.

Dan Moore

12 comments

authentication

November 16, 2022

You can add biometric authentication to your webpage. Here's how.

Prompting for a username and password is so 2005. Today, you can just prompt for a fingerprint.

Dan Moore

2 comments

authentication

April 14, 2022

The Authorization Code grant (in excruciating detail) Part 2 of 2

Dan Moore

3 comments

API authorization Code for a Living OAuth2

October 6, 2021

Best practices for REST API security: Authentication and authorization

If you have a REST API accessible on the internet, you're going to need to secure it. Here's the best practices on how to do that.

Sam Scott, Graham Neray

20 comments

API authorization Code for a Living rest api

August 24, 2021

Podcast 369: Passwords are dead! Long live the new authentication flows.

Magic links get you in the door safer than passwords.

Ryan Donovan

39 comments

authentication