HiveSnap - Session-Cookies Vs. JWT Authentication - JWT 學習日記 - 004 by nuagnorab

hive-105017 · @nuagnorab · Jul 7 '20

$15.13

HiveSnap - Session-Cookies Vs. JWT Authentication - JWT 學習日記 - 004

剛開始學習使用有關 JWT 的 Authentication。

什麼是 JWT (JSON Web Token)?
[HiveSnap - JWT (JSON Web Token) 學習日記 - 01](https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-01)

Basic session-based Authentication flow。
 [HiveSnap - JWT (JSON Web Token) 學習日記 - 02 - Basic session-based Authentication flow](https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-02-basic-session-based-authentication-flow)

Basic JWT-based Authentication flow。
 [HiveSnap - JWT (JSON Web Token) 學習日記 - 03 - Basic JWT-based Authentication flow](https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-03-basic-jwt-based-authentication-flow)

---

![image.png](https://cdn.steemitimages.com/DQmaYcdmzntDFJqDziSBEcXHaGKWL2wsyRVkqv4x3ytej7F/image.png)
[Source - Ben Awad](https://www.google.com/url?sa=i&url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Do9hT7v0OLJc&psig=AOvVaw3VCBAFGjUEn8w2xZMwJaDm&ust=1594224829381000&source=images&cd=vfe&ved=0CA0QjhxqFwoTCPiP8rrEu-oCFQAAAAAdAAAAABAD)

業界使用 session-cookie 模式已有很長時間了。例如在 Ruby on Rails 盛行的年代。

也因為時間夠長，在實施 Authentication 功能時，可以在線找到許多不同語言的解決方案。基本上不會怕在 Stackoverflow 上找不到需要的提示。

 因此，在前期沒有External Module時在 App 上使用上 JWT-based 這樣的基於 Token 的 Authentication 相比，開發人員更容易傾向使用 session-based。

感謝 NodeJS 的興起。 有許多 Module/Library 為 NodeJs 開發人員提供了一種簡單得多的方法來設置基於 Token 的 Authentication。 如```passport-jwt```。

---

Session-Cookies Vs. JWT Authentication

Scalable 擴展性


在現代Web應用程序中，尤其是在 react ＆ vue 應用程序的興起中，由於 JWT token 存儲在客戶端，因此JWT token-based 的擴展性優於 session-based 的。

Session 使用 server memory 來存儲用戶數據，這在擴展服務器時給服務器增加了更多負擔，並當在有多位用戶同時間一齊訪問該應用程序會帶來許多不便。

---

Security 安全性

雖然只要有連線上網就是被惡意攻擊的可能，但在現時 JWT 使用 ```BASE64```編碼，比起session-cookie 更有防護力。

不過在此也要說清楚，敏感或重要的資料，可以的話就不要在網上傳播了。

---

Cheers!

👍 abit, sweetsssj, hkfund, justyy, i-d, rosatravels, jsquare, musiccccat, honoru, nuagnorab, wilhb81, exyle, littleksroad, ezzy, team-cn, cherryzz, nateaguila, gerber, huaren.news, nanosesame, kitcat, aellly, chronocrypto, pet.society, kirato, annepink, wilkinshui, aaronli, morningshine, guyverckw, steem.leo, nealmcspadden, julian2013, cnbuddy-reward, hivecur, dcityrewards, emrebeyler, mrspointm, xiaoliang, nostalgic1212, silvertop, pladozero, mrpointp, canna-collective, winniex, goodboyphilip, davidchen, ericet, victorier, purefood, linuslee0216, daan, lovequeen, shenchensucc, someguy123, artsymelanie, engrave, accelerator, shirlam, nicolemoker, dlike, hertz300, victory622, minloulou, and 280 others
👎 spaminator

`author`	nuagnorab
`permlink`	hivesnap-session-cookies-vs-jwt-authentication-jwt-004
`category`	hive-105017
`json_metadata`	{"app":"peakd/2020.07.1","format":"markdown","tags":["cn","cn-reader","cn-curation","palnet","build-it","neoxian"],"users":["nuagnorab"],"links":["https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-01","https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-02-basic-session-based-authentication-flow","https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-03-basic-jwt-based-authentication-flow","https://www.google.com/url?sa=i&url=https%3A%2F%2Fwww.youtube.com%2Fwatch%3Fv%3Do9hT7v0OLJc&psig=AOvVaw3VCBAFGjUEn8w2xZMwJaDm&ust=1594224829381000&source=images&cd=vfe&ved=0CA0QjhxqFwoTCPiP8rrEu-oCFQAAAAAdAAAAABAD"],"image":["https://cdn.steemitimages.com/DQmaYcdmzntDFJqDziSBEcXHaGKWL2wsyRVkqv4x3ytej7F/image.png"]}
`created`	2020-07-07 16:26:27
`last_update`	2020-07-07 16:26:27
`depth`	0
`children`	0
`last_payout`	2020-07-14 16:26:27
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	7.656 HBD
`curator_payout_value`	7.471 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	1,769
`author_reputation`	125,097,310,898,849
`root_title`	"HiveSnap - Session-Cookies Vs. JWT Authentication - JWT 學習日記 - 004"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	98,392,477
`net_rshares`	37,192,105,927,409
`author_curate_reward`	""

properties (23)vote details (345)

voter	rshares	pct
abit	12,636,373,521,569	50%
wongshiying	8,569,622,501	100%
mangou007	7,120,854,608	4.52%
gerber	283,831,363,968	4%
daan	58,860,731,403	8%
ezzy	311,256,442,214	4%
exyle	370,629,692,412	4%
andyjim	7,065,488,548	100%
tensaix2j	4,784,932,634	100%
bert0	21,831,243,693	4.52%
sweetsssj	10,319,372,397,844	25%
someguy123	53,971,041,633	4%
justyy	875,597,476,300	100%
btshuang	1,377,202,436	100%
devilwsy	3,392,829,630	100%
janiceting	3,396,174,749	100%
privex	7,287,965,528	8%
htliao	7,482,075,810	10%
dune69	14,614,281,598	4%
jerrybanfield	38,195,190,608	4%
susanlo	12,803,099,872	70%
cryptoemperor	7,941,346,596	20%
mys	11,329,959,408	3.3%
guyverckw	112,537,595,123	60%
nanosesame	222,515,960,412	80%
cpyjeffrey	6,849,922,101	100%
john.liao	509,845,142	100%
yvonnetse	15,065,785,252	20%
kenchung	2,886,255,588	100%
pakyeechan	4,269,825,669	50%
jeffreytong	2,600,982,868	100%
johnliao	1,776,765,961	100%
helloworld123	913,812,676	100%
nuagnorab	399,540,620,967	100%
kitcat	207,075,428,647	100%
victorier	65,313,791,053	40%
rycharde	1,177,625,383	10%
linuslee0216	63,072,330,280	100%
wilkinshui	139,811,064,753	100%
carobetc	4,210,352,333	100%
thomaskikansha	17,546,399,411	100%
chingyi	4,623,506,071	100%
mrjt	588,640,476	100%
aaronli	127,144,413,093	100%
marylaw	3,881,589,459	70%
jenthedreamer	1,711,279,203	100%
shenchensucc	55,386,015,609	100%
pyc1512	32,326,982	100%
vincentttw	131,775,115	100%
krischy	25,540,101,394	60%
claratze	0	100%
jacklcp	635,915,785	100%
biuiam	2,746,470,648	100%
whd	3,840,312,480	2.9%
kristytyxd	1,094,285,286	100%
d-pend	1,088,062,666	0.04%
bobowyeahxd	265,104,615	100%
colinct	974,179,807	100%
davidmendel	1,536,473,687	80%
mrpointp	76,297,545,334	100%
mcw	1,758,460,763	100%
sanzo	516,091,338	100%
mygod	1,367,936,987	100%
shitsignals	1,403,419,717	4%
yuwineryyuvia	12,541,104,455	100%
boooster	15,833,297	100%
eason1117	0	100%
votebooster	0	100%
shirlam	50,007,140,779	100%
everrich	7,307,863,363	80%
mellissaying	229,798,578	100%
syh7758520	26,212,117,816	100%
kona	15,521,665,642	50%
diaohuijun	6,812,921,494	100%
nicolemoker	49,861,594,569	65%
interactive	1,006,179,581	20%
leir	4,851,071,219	100%
shihabieee	616,783,435	12.5%
john811	5,043,130,989	100%
felander	19,418,873,210	4%
spaminator	-12,294,296,322	-0.5%
mrspointm	89,620,352,735	100%
liumei	12,527,774,968	100%
yhhhhhhhhh	2,038,579,296	100%
deskart	2,313,788,213	100%
waiyee422	9,080,928,695	100%
fbslo	6,218,387,786	1.45%
accelerator	50,248,056,278	5%
sportyfree	2,563,851,177	100%
yogacoach	1,818,667,345	2%
goodboyphilip	73,818,667,326	100%
rosatravels	612,566,978,716	100%
deathwing	4,165,712,923	4%
connieleung	463,042,576	100%
minloulou	39,758,620,182	100%
victory622	46,030,069,179	30%
jsquare	565,620,033,760	38%
vincentyip	375,603,418	100%
gladyslui	15,009,400,255	100%
flamingirl	1,140,279,692	4.52%
jychbetter	8,953,519,096	100%
winniex	75,578,334,242	100%
caladan	14,812,738,258	4%
kawing	0	100%
jianan	3,380,913,259	100%
sosoo	1,916,086,504	100%
nuv	1,663,154,346	100%
terencetze	0	100%
emrebeyler	95,868,504,419	4%
windowglass	4,201,583,606	100%
zmx	12,889,834,431	100%
cosetteee	1,299,449,766	100%
nileelily	6,248,471,245	100%
michelleluilui	10,201,359,904	100%
stephenma26	0	100%
jacktan	2,980,388,461	50%
angelina6688	4,523,126,605	100%
funtraveller	1,546,159,859	4%
hkfund	1,507,185,400,047	100%
cheva	20,058,225,625	100%
hkupvotebot	1,824,697,954	50%
fun2learn	5,373,606,437	3%
nealmcspadden	103,604,889,426	4%
maiyude	3,340,421,849	100%
purefood	63,347,918,284	4%
wilhb81	378,321,906,211	100%
emmali	19,237,965,285	100%
chronocrypto	177,134,302,832	4%
youandme	908,484,953	100%
kirato	168,131,954,251	100%
sweetdisaster	1,269,986,666	100%
cadawg	8,237,819,461	2.8%
nostalgic1212	87,750,290,327	100%
pkocjan	1,706,876,191	3.2%
shentrading	28,618,866,374	100%
also.einstein	7,821,321,896	100%
g9g	19,052,060,268	100%
fishbb	1,999,098,875	50%
ericet	68,986,247,388	100%
beleg	1,295,426,456	2.9%
bestboom	15,062,816,137	4%
abrockman	19,695,944,550	4%
aellly	196,495,688,230	100%
huangzuomin	13,218,047,781	100%
liewsc	3,002,850,037	50%
tanzy	1,412,302,195	50%
freddio	16,077,698,190	4%
herstory	9,621,303,585	100%
fishdd	1,950,848,961	50%
andrewma	22,829,564,320	100%
glodniwiedzy	1,084,515,300	3.8%
eviacha	547,040,350	100%
xiaoliang	89,298,806,566	100%
i-d	739,585,547,734	100%
honoru	430,463,997,025	100%
satoshihk	5,750,922,566	100%
pladozero	77,626,737,873	10%
nateaguila	289,997,023,100	8%
hmayak	24,270,332,169	100%
springfall	3,466,881,215	100%
therabbitzone	532,986,816	50%
fishlucy	13,994,890,971	50%
hkphotography	2,889,175,912	100%
pgr	800,063,354	50%
ronbong	3,010,338,928	100%
robertyan	16,722,186,771	100%
xiaoyuanwmm	4,775,632,632	100%
kidsreturn	5,220,992,548	100%
swisswitness	2,275,320,557	4%
tydebbie	7,819,759,403	50%
moneybaby	774,550,444	2.5%
ybeyond	4,699,839,447	100%
team-cn	310,464,970,570	100%
hardmetal	2,785,927,880	100%
coder-bts	9,207,989,929	100%
wanggang	23,677,601,834	20%
chick-fil-a	3,431,728,497	100%
redlobster	3,436,951,506	100%
fiveguys	1,893,910,515	100%
marcoy2j	2,979,506,351	100%
tiffany4ever	6,650,117,169	100%
bonefish	3,417,541,780	100%
chilis	3,420,059,313	100%
olive-garden	1,828,444,204	100%
zhuanzhibufu	2,768,453,264	100%
shine.wong	3,569,794,788	100%
shuxuan	3,479,484,506	100%
zongli	2,070,012,136	100%
zhuxi	2,764,413,748	100%
julian2013	102,066,787,689	100%
dlike	49,071,192,066	4%
silvertop	81,122,657,365	100%
melaniewang	16,409,724,289	100%
teamcn-news	1,833,572,730	100%
wenxuecity	2,549,273,469	100%
mitbbs	3,431,901,275	100%
gorbisan	5,194,762,927	2.9%
artsymelanie	53,272,115,905	100%
engrave	52,985,035,797	3.8%
bobby.madagascar	1,578,252,499	1%
isaandrich	10,503,527,364	75%
slientstorm	9,905,000,108	100%
laissez-faire	13,979,670	100%
pet.society	170,971,630,547	100%
canna-collective	75,751,978,530	30%
minminlou	1,400,527,797	75%
annepink	162,618,289,096	100%
creativeblue	8,225,467,682	50%
cherryzz	307,649,558,636	100%
photo-baby	151,334,141	100%
jamebanfield	63,926,892	100%
conada	66,600,989	100%
overthewall	23,926,149	100%
kawaiv	0	100%
alexstand	0	100%
ali-oli	151,281,124	100%
teamcn-shop	29,187,262,119	100%
yanyanbebe	9,924,323,214	100%
memeteca	552,045,680	4.52%
vkwong	269,060,455	100%
bimance	110,565,614	100%
followjohngalt	22,556,350,608	4%
kelvinzhang	5,591,424,352	100%
starrouge	1,048,492,524	50%
catarafa	1,815,880,284	100%
zerofive	943,049,679	50%
cryptoast	86,605,440	20%
melodyzhou	1,186,462,245	100%
honey00	706,760,021	100%
cryptoast.bounty	0	100%
rafaeleff15	1,793,109,422	100%
ahua	1,757,082,529	100%
morningshine	113,309,616,928	100%
gainsomeweight	0	100%
permaculturedude	756,909,126	2%
steemitportugal	1,173,093,698	1%
cn-activity	7,406,715,575	100%
gear.nsnow	596,637,099	50%
davidchen	70,428,647,837	100%
moneybabe	328,221,336	100%
cecilian	7,547,653,217	100%
devyleona	29,499,116,891	100%
yanhan	39,035,134,051	100%
foodiecouple	6,143,749,137	100%
m18207319997	12,825,612,007	100%
lovelemon	14,280,933,553	100%
theinspiration	560,443,530	100%
epic4chris	559,569,646	100%
cn-hello	2,915,625,971	100%
mylord1992	7,714,978,308	100%
icecoffee	904,827,935	100%
candy.tang	12,260,766,534	100%
kgame	3,511,457,033	100%
hertz300	48,265,782,888	100%
koei	2,445,578,861	100%
map10k	6,170,513,638	25%
waraira777	806,943,146	50%
vxc	518,932,006	10%
we-are-palcoin	1,455,051	12%
jimhawkins	0	1%
nympheas	17,822,127,032	80%
aaronli.sct	731,584,481	10%
milu-the-dog	1,694,264,551	4%
steem-drivers	2,086,576,750	100%
triplea.bot	1,396,235,417	4%
steem.leo	104,277,479,068	4%
sumd	804,938,311	100%
onecent	661,919,253	100%
xiaoq.sports	5,069,680,282	100%
freddio.sport	3,282,977,570	4%
hykwf678233	35,476,672,515	100%
asteroids	22,540,686,015	4%
atyh	6,318,678,695	100%
mapxv	5,010,178,759	29%
one.life	678,305,525	3.99%
ericetchen	1,872,202,958	100%
stevewu	4,927,749,405	100%
kristinasiu	1,887,578,198	100%
maxuv	8,026,625,213	80%
maxuvd	20,605,630,303	6%
maxuve	26,716,862,912	6%
dappcoder	1,582,461,663	33%
liberatehongkong	289,385,299	100%
moleah	17,325,084,984	100%
trevorlp97	11,004,255,771	100%
trevormomo	2,214,822,738	100%
annzhao	15,002,663,799	100%
cherrylp147	728,726,780	100%
tonimontana.neo	0	0.47%
cn-trail	760,783,872	100%
cryptowesearch	13,746,492	100%
cnbuddy-reward	99,662,605,284	100%
chris55	863,463,239	100%
huaren.news	237,167,442,222	12%
goodreader	3,076,426,701	36%
gerbo	1,041,358	4%
ladyalkaid	1,603,302,219	100%
lnakuma	12,224,702,654	100%
ibutterfly	1,202,154,163	100%
lukgot	3,977,415,338	100%
ribary	1,280,656,677	2%
aagod	3,978,576,345	100%
bo022	548,609,124	100%
toni.pal	0	0.98%
rkogod	3,976,254,643	100%
wiggod	3,968,950,412	100%
huiwilkins	3,970,704,326	100%
huiwilkins2	3,971,019,871	100%
kengod	3,970,968,321	100%
biugod	3,966,371,703	100%
hunggod	3,971,090,348	100%
llgod	3,965,391,302	100%
aaken	3,967,690,647	100%
aarko	3,966,886,476	100%
kenchung1	33,973,504,687	100%
kenchung2	1,932,514,162	100%
kenchung3	1,932,324,367	100%
kenchung4	1,930,551,163	100%
kenchung5	1,929,967,550	100%
kenchung6	1,928,881,030	100%
kenchung7	1,929,490,094	100%
kenchung8	1,929,618,942	100%
kenchung9	1,929,622,867	100%
kenchung10	1,930,845,620	100%
mice-k	23,639,204,804	4%
staryao	10,664,737,256	30%
steem.buzz	1,815,311,100	100%
curamax	1,964,394,672	4%
catanknight	2,472,869,945	100%
steemcityrewards	777,280,628	4%
dpend.active	1,018,391,898	0.8%
lovequeen	57,459,318,022	100%
polish.hive	10,623,030,227	4%
littleksroad	323,814,856,191	100%
dcityrewards	98,070,157,448	4%
portraits	0	25%
dryuen	655,411,458	100%
curation.bot	0	0.17%
kitrewq000	6,782,289,917	100%
kikoxixi	23,722,800,194	100%
musiccccat	431,525,038,686	100%
alwaysthinking	13,945,304,827	100%
hivecur	99,434,548,902	4%
xiaomalailiao	14,578,653,504	100%
weiweilove	3,246,018,305	100%