Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Conferences

Free Learning

You're reading from Node.js Web Development Server-side web development made easy with Node 14 using practical examples

Product type Paperback

Published in Jul 2020

Publisher Packt

ISBN-13 9781838987572

Length 760 pages

Edition 5th Edition

Languages

JavaScript

Tools

Node.js

Concepts

Server Side Web Development

Author (1):

David Herron

View More author details

Table of Contents (19) Chapters

Preface

1. Section 1: Introduction to Node.js

2. About Node.js FREE CHAPTER

3. Setting Up Node.js

4. Exploring Node.js Modules

5. HTTP Servers and Clients

6. Section 2: Developing the Express Application

7. Your First Express Application

8. Implementing the Mobile-First Paradigm

9. Data Storage and Retrieval

10. Authenticating Users with a Microservice

11. Dynamic Client/Server Interaction with Socket.IO

12. Section 3: Deployment

13. Deploying Node.js Applications to Linux Servers

14. Deploying Node.js Microservices with Docker

15. Deploying a Docker Swarm to AWS EC2 with Terraform

16. Unit Testing and Functional Testing

17. Security in Node.js Applications

18. Other Books You May Enjoy

Leave a review - let other readers know what you think

Keeping secrets and passwords secure

We've cautioned several times about the importance of safely handling user identification information. The intention to handle that data safely is one thing, but it is important to follow through and actually do so. While we're using a few good practices so far, as it stands, the Notes application would not withstand any kind of security audit for the following reasons:

User passwords are kept in clear text in the database.
The authentication tokens for Twitter et al. are in clear text.
The authentication service API key is not a cryptographically secure anything; it's just a clear text universally unique identifier (UUID).

If you don't recognize the phrase clear text, it simply means unencrypted. Anyone could read the text of user passwords or the authentication tokens. It's best to keep both encrypted to avoid information leakage.

Keep this issue in the back of your mind because we'll revisit these—and other...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

David Herron

David Herron is a software engineer living in Silicon Valley who has worked on projects ranging from an X.400 email server to being part of the team that launched the OpenJDK project, to Yahoo's Node.js application-hosting platform, and a solar array performance monitoring service. That took David through several companies until he grew tired of communicating primarily with machines, and developed a longing for human communication. Today, David is an independent writer of books and blog posts covering topics related to technology, programming, electric vehicles, and clean energy technologies.

See other products by David Herron