#authorization

How to Prevent IDOR Vulnerabilities in Next.js API Routes

Imagine this situation: A user logs in successfully to your application, but upon loading their dashboard, they see someone else’s data. Why does this happen? The authentication worked, the session is

10h ago9 min read

NBNripesh Bhusalbackendtheory.hashnode.dev

Authentication & Authorisation

History of Authentication: Early Civilisation: Authentication and methods of Authenticating someone, has existed since the advent of Civilisation. Earlier modes of Authentication came from Trust, like

6d ago10 min read

AHAnzal Husain Abidianzal.hashnode.dev

The Authentication Gap That Every AI Agent Lives In

Why existing auth was never built for autonomous agents — and how we fixed it with open-source cryptography The Uncomfortable Truth Your AI agent is authenticating like it's 2009. Every day, millions of AI agents make HTTP requests on behalf of the h...

Feb 156 min read

TITech Insights Hubtopperblog.hashnode.dev

Authentication vs Authorization: Guide

The Fundamental Distinction Between Authentication and Authorization Authentication answers one question: "Who are you?" It verifies identity through credentials, biometrics, hardware tokens, or cryptographic proofs. When a user enters a password, sc...

Feb 1210 min read

TITech Insights Hubtopperblog.hashnode.dev

API Security: Authentication Authorization

Why Traditional API Security Approaches Fail in 2025 Traditional API security models were designed for monolithic applications with centralized authentication servers and predictable traffic patterns. These approaches break down when confronted with ...

Feb 1210 min read

TITech Insights Hubtopperblog.hashnode.dev

OAuth2 Authorization Code: Authentication Flow

Why Traditional Authentication Approaches Fail Modern Requirements Basic authentication with username and password transmission fails in distributed architectures where multiple services need controlled access to user resources. Session-based authent...

Feb 1210 min read

TITech Insights Hubtopperblog.hashnode.dev

CASL Authorization: Role-Based Access Control Patterns

CASL Authorization: Role-Based Access Control Patterns The Security Breach That Could Have Been Prevented Last month, we almost lost everything. Here's the security mistake we made and how you can avoid it. Table of Contents Security Landscape 2026 ...

Feb 125 min read

TITech Insights Hubtopperblog.hashnode.dev

Permit.io Authorization: Managed RBAC and ABAC

Permit.io Authorization: Managed RBAC and ABAC The Security Breach That Could Have Been Prevented Last month, we almost lost everything. Here's the security mistake we made and how you can avoid it. Table of Contents Security Landscape 2026 Threat M...

Feb 125 min read

PJPurva Jadhavjwt-based-authentication.hashnode.dev

JWT Based Authentication

When we deal with backend authentication, the first thing that comes to our mind is JWT authentication. So in this article, we will deep dive into JWT-based authentication. We will understand: What is JWT? What is the structure of JWT? How we auth...

Feb 114 min read

TKTushar Kapiltushar-dev.hashnode.dev

Understanding JWT (JSON Web Tokens)

In modern web applications, authentication and authorization are critical. One popular solution used by developers today is JWT (JSON Web Token). JWT provides a compact, secure, and efficient way to transmit information between a client and a server....

Feb 103 min read

Tag feed

Tag feed

#authorization

How to Prevent IDOR Vulnerabilities in Next.js API Routes

Authentication & Authorisation

The Authentication Gap That Every AI Agent Lives In

Authentication vs Authorization: Guide

API Security: Authentication Authorization

OAuth2 Authorization Code: Authentication Flow

CASL Authorization: Role-Based Access Control Patterns

Permit.io Authorization: Managed RBAC and ABAC

JWT Based Authentication

Understanding JWT (JSON Web Tokens)

#authorization

Search Hashnode

#authorization

How to Prevent IDOR Vulnerabilities in Next.js API Routes

Authentication & Authorisation

The Authentication Gap That Every AI Agent Lives In

Authentication vs Authorization: Guide

API Security: Authentication Authorization

OAuth2 Authorization Code: Authentication Flow

CASL Authorization: Role-Based Access Control Patterns

Permit.io Authorization: Managed RBAC and ABAC

JWT Based Authentication

Understanding JWT (JSON Web Tokens)