RR 294 JSON Web Tokens, Authentication, and Authorization with David Kimura

    0
    228

    JSON Web Tokens, Authentication, and Authorization with David Kimura

    On today's episode, Charles Max Wood and Jerome Hardaway discuss JSON Web Tokens, Authentication, and Authorization with David Kimura. David has worked on Rubies as well as for Sage Software for about 7 years.

    What is DriftingRuby?

    David runs a short screencast site called DriftingRuby.com. It's where anyone can learn about Rubies through videos. What's great about it is it's currently free for everyone to use.

    Rails Devise Authentication

    Devise authentication can come in difficult for some. But if you get into its core, you'll find it relatively easy. It uses BCrypt to store your password, takes it every time you sign in, and encodes it to see if it matches the hatch.

    This a secure way of authentication. The stronger the password you have, the more difficult it is to be hacked. One good thing about BCrypt is that it also keeps the salt between the password. It makes it irreversible, and changes over time.

    Configuration at Rails

    Rails provides you the freedom to configure. So if you want to store a system or something else, you are free to do so. It depends on your situation and the type of application you're building.

    To hear about JSON Web Tokens, Authentication, and Authorization with David Kimura, download and listen to the entire episode.

    If you’re short on time, here are the highlights of JSON Web Tokens, Authentication, and Authorization with David Kimura:

    Rails devise authentication? ([4:09])

    Configuration at Rails? ([7:21])

    How do JavaScript web tokens work? ([10:25])

    Authorization in Rails? ([16:45])

    Libraries for authentication? ([26:34])

    Capabilities in trade-offs? ([36:32])

    Future with Rails? ([40:02])

    Picks:

    Jerome: Action Cable in Rails 5 by Michael Hartl, SRE Conference in San Francisco

    Charles: Battlestar Galactica, Upcoming My Story Episodes on JavaScript Jabber and Ruby Rogues

    David: Doctor Who, Attend Meet Ups

    Links and Topics to Check Out

    Authlogic
    Devise 
    HTTP Basic Authentication 
    BCrypt 
    Rails Engine
    Redis 
    SSL
    Adobe Hack
    Rainbow Tables
    RDS 
    JWTs