You're reading from Node.js for Beginners A comprehensive guide to building efficient, full-featured web applications with Node.js

Product type Paperback

Published in May 2024

Publisher Packt

ISBN-13 9781803245171

Length 382 pages

Edition 1st Edition

Languages

JavaScript

Tools

Node.js

Concepts

Web Programming

Author (1):

Ulises Gascón

View More author details

Table of Contents (25) Chapters

Preface

1. Part 1: Node.js Overview and JavaScript Language FREE CHAPTER

2. Chapter 1: Introduction to Node.js

3. Chapter 2: Setting Up the Development Environment

4. Chapter 3: JavaScript Fundamentals

5. Chapter 4: Asynchronous Programming

6. Part 2: Node.js Ecosystem and Architecture

7. Chapter 5: Node.js Core Libraries

8. Chapter 6: External Modules and npm

9. Chapter 7: Event-Driven Architecture

10. Chapter 8: Testing in Node.js

11. Part 3: Web Application Fundamentals

12. Chapter 9: Handling HTTP and REST APIs

13. Chapter 10: Building Web Applications with Express

14. Part 4: Building Solid Web Applications with Node.js

15. Chapter 11: Building a Web Application Project from Scratch

16. Chapter 12: Data Persistence with MongoDB

17. Chapter 13: User Authentication and Authorization with Passport.js

18. Chapter 14: Error Handling in Node.js

19. Chapter 15: Securing Web Applications

20. Part 5: Mastering Node.js Deployment and Portability

21. Chapter 16: Deploying Node.js Applications

22. Chapter 17: Dockerizing a Node.js Application

23. Index

Why subscribe?

24. Other Books You May Enjoy

Understanding modern authentication and authorization

Authentication and authorization are two different concepts that are often confused. Authentication involves confirming the identity of a user, whereas authorization involves verifying the specific access privileges they possess. In this chapter, we will explore how to implement both concepts in our web application in the Adding authentication and authorization to our web application section.

Authentication

One of the big challenges of the HTTP protocol is that it is stateless. This means that the server does not keep any information about the client. Each request is independent, so we need to design and provide mechanisms that allow us to know who the user performing the request is. This is the main goal of the authentication process.

There are many ways to implement authentication in a web application. The most common way is to use a username and password, and there are many libraries that can help us to implement this...