Mar 7 · 3 min read · Modern web applications rely on tokens to manage authentication and authorization securely. Tokens are essentially pieces of encoded information that allow users to access the resources, databases, an
Join discussionFeb 3 · 1 min read · accessToken is short-lived and is used to access protected APIs.It is sent with every request to prove that the user is authenticated Usually, the access token is stored in an httpOnly cookie, so JavaScript cannot read it.The browser automatically se...
Join discussionJan 24 · 1 min read · hey guys.. today we are discussing about types of tokens which is used in authentication for an application. majorly, there are two types of tokens which are used for authentication and authorization of a user in a particular website.1. Access Token2...
Join discussionDec 24, 2025 · 1 min read · Access Token Access Token is a Short-lived used to access protected APIs. It send every API request and Short expiry time(e.g., 5-10 minutes). It usually stored in memory or httpOnly cookie. Access Token = Entry Slip You Show it every time you enter...
Join discussion
Nov 23, 2025 · 2 min read · A token is an interesting concept. It gives you temporary access to the paid/secured services without the hassle of worrying about assets. Many indian shopkeepers use this concept. They use tokens mainly for security, convenience, and organization in...
Join discussion
Nov 8, 2025 · 6 min read · Your API is built, but it's open to everyone. You need authentication—a way to know who is making a request. A common, powerful solution is using JSON Web Tokens (JWT). However, a simple JWT that lasts for 30 days creates a major security risk: if a ...
Join discussion
Oct 22, 2025 · 2 min read · In today's digital age, every app or website wants to keep user data secure. Whenever you log in to Facebook, Google, or any website, there's an authentication process that verifies your identity. Two things are important in this process—an access to...
Join discussion
Oct 22, 2025 · 4 min read · 🔐 Understanding Access and Refresh Tokens in MERN Authentication When I was building authentication for my MERN project, I kept seeing developers talk about Access Tokens and Refresh Tokens — but I didn’t fully understand why we need both. After imp...
Join discussion
Oct 3, 2025 · 3 min read · Access Token Access tokens are short-lived, that allow the user to access resources without needing to log-in repeatedly. These are sent with an each API request (Authorization: Bearer <token>). If they are stolen, attacker would have a very shorter ...
Join discussion
Sep 28, 2025 · 8 min read · Introduction In modern web applications, authentication and authorization have evolved far beyond simple username-password combinations. As applications became more complex and distributed, developers needed sophisticated mechanisms to securely manag...
Join discussion