Securing a JavaScript REST API with JSON Web Tokens

Make your JavaScript REST API robust and secure. This course will teach you how to protect RESTful API endpoints using JSON Web Tokens
Course info
Rating
(29)
Level
Intermediate
Updated
Sep 24, 2020
Duration
1h 26m
Table of contents
Description
Course info
Rating
(29)
Level
Intermediate
Updated
Sep 24, 2020
Duration
1h 26m
Description

For server side JavaScript applications, securing protected routes and working with authorization is often a challenging task. In this course, Securing a JavaScript REST API with JSON Web Tokens, you’ll learn to use the mechanism of JWT also read as JOT to transfer claims between two parties. First, you’ll explore how to protect the server side REST API endpoints from unauthorized access and data tampering. Next, you’ll discover how servers can generate, sign, send, and validate claims in the JSON Web Tokens. Finally, you’ll learn how to make tradeoffs when storing JWT, security considerations, possible JWT attacks and security best practices to mitigate the risk. When you’re finished with this course, you’ll have the skills and knowledge of JWT fundamentals needed to design and ship robust RESTful APIs in the JavaScript ecosystem.

About the author
About the author

Deeksha is an independent remote engineer. Since 2010, she worked with tech companies in 7 cities across 4 countries. She is an avid traveller and a programmer who believes anything can be learned and practiced if we put our heart and soul to it!

More from the author
Debugging Progressive Web Apps
Beginner
1h 25m
Jun 3, 2020
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hi, everyone. My name is Deeksha Sharma, and welcome to my course, Securing JavaScript REST API with JSON Web Tokens. I'm a co‑founder and engineer at bonsaiilabs. JSON Web Tokens are pretty popular when it comes to securing the APIs. They can be used to verify the identity of the user with certain claims, and it's crucial to have a mechanism which prevents tampering of such information. This is where JSON Web Tokens with Signature help. This course covers the core knowledge for the developers that are on either side of generating or consuming JSON Web Tokens. You'll work on a full stack application bookie, whose frontend consumes server‑side APIs and allow its users to only interact with the features they're authorized to. Some of the major topics we will cover include understanding what a JSON Web Token is, the problem it solves, and how it can help you restrict unauthorized access to your REST APIs. You will learn how to generate a signed JSON Web Token on the server‑side and verify its claims when the token is received back in the request. You will implement two approaches of transporting the token across the network. By the end of this course, you will be in a position to leverage JSON Web Token for API security and have a strong reasoning of what approach would be worth taking. Before beginning this course, you should be familiar with API development using Node.js and knowledge of React for the frontend code. I hope you'll join me in this course to learn how to make your endpoints robust and safe with Securing a JavaScript REST API with JSON Web Tokens course at Pluralsight.