- 
                                Learn how to implement a custom user authentication system that controls users access to web resources, using password hashing and JSON Web Tokens for security. The system lets users sign up, log in, and log out, limiting access to certain actions based on authorization. What you'll learn- Authentication vs Authorization
- Cookies vs. Session Storage
- JSON Web Tokens (JWT)
- Securing Passwords
 
- 
                                        What is AuthenticationYou may think that authentication is one of the easiest parts of your application, and yes, it can be. However, to do authentication correctly can be a very difficult thing. If you manage your passwords incorrectly, it opens you up to a huge security vulnerability that will cost you later on down the road. Learning about the basics is the first place to start. Chevron 6 steps-   Authentication vs Authorization2:11 
-   Application Overview1:26 
-   AuthN vs AuthZ3 questions 
-   Cookies vs. Session Storage2:57 
-   JSON Web Tokens1:54 
-   Cookies vs Sessions5 questions 
 Building the LibraryIt is time to build the core of our application without any of the complexity of authentication or authorization. This stage is all about setting up the files we need for viewing our books and adding more to our list. Chevron 10 steps-   Building the Book List12:02 
-   Adding Books3:38 
-   HTTP Foundation4 questions 
-   Modifying Books6:37 
-   Edit Procedure2:44 
-   Deleting Books1 objective 
-   Book Rating System6:23 
-   Accepting the Vote3:45 
-   Refactoring1:46 
-   HTTP Foundation1 objective 
 Adding Authentication to Your ApplicationWe now have the core of our application built, however it is open to the world to use and edit/delete any book. We should set up some sort of authentication system to prevent this and allow a user to “own”! Chevron 13 steps-   Registration System6:08 
-   Securing Passwords5:38 
-   Login Systems4:53 
-   Building a JWT4:52 
-   Authentication Review5 questions 
-   Working with Cookies4:24 
-   Require Authentication5:22 
-   Logging Out3:13 
-   Flash Messages5:29 
-   Cookies and Flash Messages3 questions 
-   User Profile9:30 
-   Reset Password4:42 
-   Password Hashing1 objective 
 Setting up Authorization SystemThe last part of our project is a way to authorize a user to let them do things based on their role. We discussed in Stage 1 the difference between authentication, which we just finished, and authorization. We will now create the role of administrator who can manage users and edit and delete any book on the site. Chevron 7 steps-   Creating Helper Functions6:51 
-   User Admin Panel11:03 
-   Combine Functions1 objective 
-   Adding Authorization Checks4:52 
-   Update the Application6:46 
-   Series Summary0:42 
-   User Authorization Review10 questions 
 
-