O'Reilly logo

Hands-On Full Stack Web Development with Aurelia by Erikson Haziz Murrugarra Sifuentes, Diego Jose Arguelles Rojas

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Understanding JSON Web Tokens

We have implemented a RESTful API that serves the information to be displayed into our Aurelia web app. This API doesn't have any security mechanism, so if any malicious users get the endpoint URL, they can run malicious scripts against our application and ruin our application. For that reason, we should reject any management operations performed by unauthorized users.

Our app should implement a mechanism to manage user's access and privileges. There are many ways to implement authentication and authorization. For our application, we will be using an open standard in the industry called JSON Web Token (JWT).

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required