JSON Web Tokens are a great stateless way to authenticate your users and remove the load from your servers and APIs, but JWT is not always secure and can take more than what they can offer us as developers! If you have been using JWTs to implement your authentication architecture, you need to watch the most general practices and security pitfalls you should avoid!
⭐ Timestamps ⭐
00:00 Intro
00:45 JWT the Right Way!
03:27 How JWT and Auth work?
04:44 Example Project 1: LocalStorage JWT
10:34 Stealing JWT From LocalStorage
12:50 Quick Fix for LocalStorage JWT tokens
13:21 How to implement HTTP-Only cookies w/ JWT
16:17 Login in with HTTP-Only cookies
16:53 Say goodbye to XSS
18:02 Using Stateful Server Sessions
21:26 Invalidating JWT Tokens (Before Expiration)
💻 Source Code:
Frontend App: [ Ссылка ]
Backend Server: [ Ссылка ]
🧭 Turn Design into React Code | From prototype to Full website in no time
[ Ссылка ]
🧭 Watch Tutorial on Designing the website on Figma
[ Ссылка ]
🧭 Watch Create a Modern React Login/Register Form with smooth Animations
[ Ссылка ]
🧭 Debug React Apps Like a Pro | Master Debugging from Zero to Hero with Chrome DevTools
[ Ссылка ]
🧭 Master React Like Pro w/ Redux, Typescript, and GraphQL | Beginner to Advanced in React
[ Ссылка ]
🧭 Learn Redux For Beginners | React Redux from Zero To Hero to build a real-world app
[ Ссылка ]
🧭 Build Login/Register API Server w/ Authentication | JWT Express AUTH using Passport.JS and Sequelize
[ Ссылка ]
🧭 Introduction to GraphQL with Apollo and React
[ Ссылка ]
🐦 Follow me on Twitter: [ Ссылка ]
💻 Github Profile: [ Ссылка ]
Made with 💗 by Coderone
![](https://i.ytimg.com/vi/FVmxtmzyrSw/maxresdefault.jpg)