Authenticating users
To authenticate users, the application needs to be able to identify a user to verify they are who they claim to be. A common authentication process starts with a user who provides either an email address or a username together with a password on the login form, and the application will find the user's record by looking in the database using the email address or the username and then doing a comparison of the password that is stored in the database with the one that the user provides. If the user record does not exist or the passwords do not match, then the authentication fails. Otherwise, the application will consider the user as authenticated and recognize the user in the following requests, usually by storing the user's ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access