A developer who can secure front-end and back-end systems using simple authentication techniques.
- Differentiate between plain text and encrypted connection
- Defend the need for encrypted connection between browser and server (https)
- Identify the anatomy of an HTTP request with and without authentication
- Differentiate between authenticated and unauthenticated connections
- Implement front-end and back-end with HTTP Basic Auth
- Discuss 3 drawbacks and 3 advantages of HTTP Basic Auth
- Describe token based auth
- Convert passwords from plain text to secure secrets which cannot be easily decrypted/decoded
- Store passwords in a database correctly and securely
- Differenciate between stateful applications and stateless web applications
- Discuss how authentication helps simulate a stateful experience on the web
- SSL and SSL Certificates Explained For Beginners{:target="_blank"}
- What happens when you enter a password?{:target="_blank"}
- What NOT to do!{:target="_blank"}
- HTTP Request Anatomy{:target="_blank"}
- The Anatomy of an HTTP Request{:target="_blank"}
- How Does Token-Based Authentication Work{:target="_blank"}
- Hashing Passwords: One-Way Road to Security{:target="_blank"}
- Stateful vs Stateless Applications (Explained by Example){:target="_blank"}
Node Applications:
- NodeJS - Basic Authentication Tutorial with Example API{:target="_blank"}
ASP.NET Applications:
- .NET 6.0 - Basic Authentication Tutorial with Example API{:target="_blank"}
Ask your mentor if you are ready for evaluation. Then, do one of the following:
- Schedule a live evaluation by clicking here to find a time on the calendar. After the evaluation, claim the badge.
or
- Record a screencast where you talk about and demonstrate each competency listed above. Make sure badge criteria and relevant tools are visible in the screen cast AND that your audio is good enough for the evaluator to hear. Upload the video to a service like Vimeo or Youtube (unlisted is fine) so that you can provide a public url for an evaluator to view. Claim the badge and include the video url in the evidence box.