A reveal.js presentation about the difference authentication mechanism in web application.
Get the slides:
Agenda:
-
HTTP Authentication Framework
- Basic HTTP Authentication [rfc7617]
- Digest HTTP Authentication [rfc7616]
- Bearer Token HTTP Authentication [rfc6750]
-
Web Session Manager
- Web Session Flow
- Web Session PHP example
- Web Session security issue
- Limitation of Web Session
-
Tokens
- JSON Web Token [rfc7519]
- Structure
- JWT Authentication Flow
- OAuth 2.0 [rfc6749]
- OAuth Authentication Flow
- Token Security issue
- Why use Token
- JSON Web Token [rfc7519]
-
Conclusion