https://software-design.dev/backend/authentication/Recent content in 🔐 Authentication on Software DesignHugoenCopyright (c) 2026 Daniil DzemidovichTue, 21 Feb 2023 13:26:53 +0300https://software-design.dev/backend/authentication/basic-auth/Sun, 05 Feb 2023 14:19:21 +0300https://software-design.dev/backend/authentication/basic-auth/<h2 id="overview">Overview</h2> <p><strong>HTTP Basic Auth</strong> is a simple authentication method using username/password pair credentials for HTTP requests.</p> <p>These credentials are encoded in <strong>Base64</strong> format and transmitted through the <code>Authorization</code> header. The header value starts with the <code>Basic</code> keyword. Here is an example header:</p>https://software-design.dev/backend/authentication/api-keys/Thu, 09 Feb 2023 14:42:54 +0300https://software-design.dev/backend/authentication/api-keys/<h2 id="overview">Overview</h2> <p><strong>API Key</strong> is a unique identification key assigned to an API client. It&rsquo;s typically an alphanumeric string included in every API call that a server can receive and validate.</p>https://software-design.dev/backend/authentication/jwt/Tue, 21 Feb 2023 13:26:53 +0300https://software-design.dev/backend/authentication/jwt/<h2 id="overview">Overview</h2> <p><strong>JWT (JSON Web Token)</strong> is a standard <a class="link link--text" href="https://www.rfc-editor.org/rfc/rfc7519" rel="external">RFC 7519</a> that defines a secure way for information transmission in a JSON object form. This piece of data can be digitally signed using a <em>secret keyword</em> (symmetrical <strong>HMAC</strong>) or <em>public/private keys</em> (asymmetrical <strong>RSA</strong> or <strong>ECDSA</strong>).</p>