HiveSnap - Basic session-based Authentication flow - JWT 學習日記 - 002 by nuagnorab

hive-105017 · @nuagnorab · Jul 5 '20

$5.89

HiveSnap - Basic session-based Authentication flow - JWT 學習日記 - 002

剛開始學習使用有關 JWT 的 Authentication。

昨天談到什麼是 JWT (JSON Web Token)? [SteemSnap - JWT (JSON Web Token) 學習日記 - 01](https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-01)

但是要說有關 JWT-based Authentication，我認為需要先說說有關 session-based Authentication。再比較先能特顯一方優勢。

先要理解的是由於HTTP是無狀態協議，因此要克服此問題，現時流行的方法都是使用上 Session 或一些 Token。

---

### <center>Basic session-based authentication</center>

![](https://hackernoon.com/photos/pazJZnCJTqSZxQS4tltZo4Gatbo1-fy453y0e)
[source - Hackermoon](https://hackernoon.com/photos/pazJZnCJTqSZxQS4tltZo4Gatbo1-fy453y0e)

1. 用戶訪問後端URL並使用credentials登錄。
2. credentials通過POST請求發送到後端服務器上的 /login route。
3. 後端服務器將使用提供的credentials從數據庫中獲取用戶。 (將用戶提供的密碼與附加到數據庫用戶對象的salt進行比較，以檢查它們是否匹配。)
4. 如果匹配，則中間件會將用戶對象的 session 附加到當前 cookie 中。
5. 對於每個新請求，cookie中的session將附加到該請求。 因此服務器將返回請求的 route 和其請求數據。

---

以上就是簡單的 session-based Authentication flow 了。

下次會說說簡單的 JWT-based Authentication flow。

Cheers!

👍 eturnerx, hkfund, i-d, justyy, jywahaha, jsquare, rosatravels, musiccccat, honoru, nuagnorab, wilhb81, aafeng, lemooljiang, littleksroad, team-cn, cherryzz, nanosesame, kitcat, smartvote, guyverckw, aellly, morningshine, digital.mine, pet.society, kirato, annepink, wilkinshui, aaronli, xiaoliang, julian2013, cnfund, mrspointm, nostalgic1212, canna-collective, goodboyphilip, winniex, mrpointp, victorier, davidchen, ericet, linuslee0216, nicolemoker, mvd, shenchensucc, artsymelanie, lovequeen, shirlam, hertz300, yanhan, hykwf678233, krischy, moneybaby, kenchung1, mys, devyleona, teamcn-shop, shentrading, wherein, syh7758520, thomaskikansha, kikoxixi, hmayak, wanggang, andrewma, and 240 others
👎 spaminator

`author`	nuagnorab
`permlink`	hivesnap-basic-session-based-authentication-flow-jwt-002
`category`	hive-105017
`json_metadata`	{"app":"peakd/2020.07.1","format":"markdown","tags":["cn","cn-reader","cn-curation","palnet","neoxian","build-it"],"users":["nuagnorab"],"links":["https://steemcn.herokuapp.com/hive-180932/@nuagnorab/steemsnap-jwt-json-web-token-01","https://hackernoon.com/photos/pazJZnCJTqSZxQS4tltZo4Gatbo1-fy453y0e"],"image":["https://hackernoon.com/photos/pazJZnCJTqSZxQS4tltZo4Gatbo1-fy453y0e"]}
`created`	2020-07-05 14:00:06
`last_update`	2020-07-05 14:00:06
`depth`	0
`children`	0
`last_payout`	2020-07-12 14:00:06
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	3.110 HBD
`curator_payout_value`	2.776 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	929
`author_reputation`	125,097,310,898,849
`root_title`	"HiveSnap - Basic session-based Authentication flow - JWT 學習日記 - 002"
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	98,354,529
`net_rshares`	16,182,549,816,955
`author_curate_reward`	""

properties (23)vote details (305)

voter	rshares	pct
wongshiying	7,836,101,680	91.02%
lemooljiang	301,453,211,557	48%
skysunny	58,151,964	48%
cnfund	92,133,200,142	91.02%
justyy	828,754,477,026	91.02%
btshuang	1,162,528,109	91.02%
devilwsy	3,048,289,424	91.02%
janiceting	3,051,292,612	91.02%
timool	91,893,801	48%
lucknie	11,033,294,728	48%
dumping	1,093,269,386	48%
elizacheng	16,623,732,248	9%
htliao	7,182,735,426	10%
mvd	52,745,533,312	50%
susanlo	12,632,521,928	70%
mys	31,122,849,415	9.1%
guyverckw	181,971,623,967	91.02%
nanosesame	241,037,111,579	80%
cpyjeffrey	6,675,210,875	100%
john.liao	494,382,801	100%
yvonnetse	15,063,890,557	20%
kenchung	2,812,697,369	100%
pakyeechan	4,247,400,119	50%
jeffreytong	2,534,394,171	100%
johnliao	1,730,717,487	100%
helloworld123	889,646,336	100%
nuagnorab	377,798,301,547	91.02%
kitcat	201,814,265,252	100%
victorier	65,162,311,323	40%
linuslee0216	59,876,375,026	91.02%
wilkinshui	129,849,565,598	91.02%
carobetc	4,103,109,932	100%
thomaskikansha	22,549,473,159	100%
chingyi	4,504,926,278	100%
mrjt	572,609,086	100%
aaronli	116,420,187,027	91.02%
marylaw	13,452,625,141	91.02%
shenchensucc	50,567,076,130	91.02%
vincentttw	126,768,713	100%
krischy	32,212,538,103	72.81%
claratze	0	100%
jacklcp	618,830,225	100%
biuiam	3,801,952,094	91.02%
whd	12,205,985,116	9.1%
kristytyxd	1,062,650,514	100%
bobowyeahxd	257,217,406	100%
colinct	945,989,167	100%
eturnerx	3,348,113,487,909	100%
davidmendel	1,224,750,736	72.81%
dante31	12,132,130,359	55%
rafalski	1,111,963,900	9.1%
mrpointp	67,556,878,333	91.02%
mcw	1,713,433,121	100%
mygod	1,152,760,385	91.02%
yuwineryyuvia	12,187,566,077	100%
boooster	14,204,991	100%
eason1117	0	100%
votebooster	0	100%
shirlam	48,739,537,291	100%
everrich	8,884,313,115	91.02%
mellissaying	222,015,221	100%
syh7758520	24,025,399,856	91.02%
kona	15,438,815,722	50%
diaohuijun	6,225,849,960	91.02%
nicolemoker	57,729,765,514	72.81%
windtalker	758,760,731	91.02%
interactive	1,006,171,815	20%
aafeng	337,277,876,867	91.02%
leir	4,416,794,067	91.02%
john811	4,914,216,013	100%
spaminator	-11,612,693,790	-0.5%
mrspointm	81,235,269,224	91.02%
liumei	11,467,076,400	91.02%
yhhhhhhhhh	1,985,629,339	100%
waiyee422	8,291,749,740	91.02%
fbslo	3,469,432,095	4.55%
sportyfree	2,498,381,125	100%
goodboyphilip	71,747,406,896	100%
veenang	522,288,093	1.35%
rosatravels	564,998,577,680	91.02%
podanrj	1,191,933,379	55%
connieleung	450,163,248	100%
xiaoshancun	7,474,460,041	100%
minloulou	15,840,777,346	91.02%
jsquare	567,253,740,210	38%
gladyslui	14,589,297,628	100%
metten	5,813,722,162	48%
jychbetter	8,027,477,143	91.02%
winniex	67,640,036,759	91.02%
kawing	0	100%
ashleykalila	1,379,107,838	50%
jianan	3,095,252,628	91.02%
cn-book	631,099,114	48%
sosoo	1,861,557,363	100%
nuv	1,619,679,661	100%
terencetze	0	100%
windowglass	3,712,193,206	91.02%
zmx	11,817,889,884	91.02%
nileelily	5,710,916,146	91.02%
michelleluilui	9,916,218,734	100%
stephenma26	0	100%
jacktan	2,679,756,349	45.51%
cn-movie	48,104,828	48%
angelina6688	4,102,324,709	91.02%
tpkidkai	2,367,745,659	50%
vivia	1,851,775,450	48%
hkfund	1,484,426,434,007	100%
cheva	18,831,690,553	91.02%
hkupvotebot	1,748,641,660	50%
fun2learn	5,197,692,391	3%
maiyude	3,062,548,807	91.02%
xiaoli	156,309,916	48%
kanabeatz	1,381,955,581	27.5%
wilhb81	348,199,786,879	91.02%
emmali	15,804,821,279	91.02%
youandme	913,920,591	100%
kirato	154,105,905,844	91.02%
sweetdisaster	1,237,014,308	100%
nostalgic1212	79,887,629,608	91.02%
promo-mentors	7,006,967,689	100%
shentrading	26,210,585,226	91.02%
also.einstein	7,232,161,102	91.02%
fishbb	1,809,812,618	45.51%
ericet	63,420,277,615	91.02%
beleg	4,180,214,093	9.1%
aellly	180,028,352,476	91.02%
huangzuomin	12,424,292,251	91.02%
liewsc	2,699,989,748	45.51%
tanzy	1,284,486,816	45.51%
herstory	9,350,956,517	100%
fishdd	1,766,047,998	45.51%
angelinafx	170,910,347	6%
we-are	2,660,056,676	15.62%
we-are-one	980,212,661	94.99%
andrewma	21,202,281,211	91.02%
eviacha	530,557,793	100%
xiaoliang	108,921,725,571	91.02%
i-d	922,038,819,988	91.02%
honoru	394,402,221,513	91.02%
satoshihk	5,605,205,604	100%
hmayak	22,091,846,673	91.02%
springfall	3,364,408,773	100%
fishlucy	13,913,146,983	50%
hkphotography	2,661,848,049	91.02%
pgr	723,727,664	45.51%
ronbong	3,093,095,585	91.02%
robertyan	15,051,089,569	91.02%
xiaoyuanwmm	4,358,296,339	91.02%
kidsreturn	4,849,694,100	91.02%
digital.mine	170,116,390,638	1%
tydebbie	7,113,055,009	45.51%
moneybaby	31,904,288,734	91.02%
ybeyond	4,294,502,869	91.02%
team-cn	283,683,963,056	91.02%
hardmetal	2,762,161,678	100%
coder-bts	9,144,423,748	100%
wanggang	21,526,456,778	18.2%
chick-fil-a	3,135,722,590	91.02%
redlobster	3,140,683,398	91.02%
fiveguys	1,721,718,774	91.02%
marcoy2j	2,796,577,218	91.02%
tiffany4ever	6,014,674,975	91.02%
bonefish	3,123,696,779	91.02%
chilis	3,125,491,240	91.02%
olive-garden	1,676,099,920	91.02%
zhuanzhibufu	2,741,472,643	100%
shine.wong	3,403,537,173	91.02%
shuxuan	3,177,541,593	91.02%
smartvote	182,662,471,341	6%
zongli	2,091,554,532	100%
zhuxi	2,737,477,941	100%
julian2013	92,602,899,443	91.02%
melaniewang	15,291,518,888	91.02%
teamcn-news	1,680,727,005	91.02%
wenxuecity	2,345,595,733	91.02%
mitbbs	3,136,680,955	91.02%
gorbisan	8,543,735,437	4.55%
artsymelanie	49,765,944,599	91.02%
isaandrich	10,503,527,364	75%
slientstorm	9,046,061,605	91.02%
laissez-faire	16,747,857	100%
voter007	157,887,085	100%
pet.society	156,203,108,808	91.02%
canna-collective	74,301,685,005	30%
minminlou	1,270,173,699	68.26%
annepink	147,477,312,836	91.02%
cherryzz	282,829,008,193	91.02%
photo-baby	145,772,307	100%
jamebanfield	61,102,647	100%
conada	63,664,705	100%
alexstand	0	100%
ali-oli	145,785,053	100%
teamcn-shop	26,898,375,764	91.02%
yanyanbebe	7,704,733,037	91.02%
bimance	106,109,888	100%
cloudblade	7,654,161,095	100%
kelvinzhang	5,080,631,667	91.02%
starrouge	914,756,552	45.51%
wherein	24,063,554,947	3%
catarafa	2,142,191,539	100%
zerofive	808,548,918	45.51%
cryptoast	86,605,440	20%
melodyzhou	1,087,925,830	91.02%
honey00	638,802,971	91.02%
cryptoast.bounty	0	100%
rafaeleff15	1,788,259,227	100%
ahua	1,682,376,903	91.02%
morningshine	171,175,768,301	91.02%
gainsomeweight	0	100%
cnstm	8,422,492,424	3%
steemitportugal	1,172,614,641	1%
cn-activity	6,657,768,188	91.02%
gear.nsnow	532,614,934	45.51%
davidchen	64,487,202,922	91.02%
moneybabe	318,838,790	100%
mia-cc	5,824,446,406	45.51%
cecilian	6,913,761,665	91.02%
devyleona	27,062,544,500	91.02%
yanhan	35,786,514,693	91.02%
foodiecouple	5,970,366,227	91.02%
m18207319997	12,200,165,978	91.02%
lovelemon	13,147,545,803	91.02%
theinspiration	544,115,987	100%
epic4chris	552,515,749	100%
cn-hello	2,683,382,870	91.02%
mylord1992	7,049,928,003	91.02%
icecoffee	818,978,365	91.02%
candy.tang	11,899,607,536	100%
kgame	3,208,309,119	91.02%
hertz300	44,821,350,226	91.02%
koei	2,215,646,051	91.02%
waraira777	730,157,352	45.51%
we-are-palcoin	1,647,431	12%
jimhawkins	0	1%
nympheas	16,461,775,814	72.81%
aaronli.sct	731,584,481	10%
steem-drivers	1,921,229,363	91.02%
sumd	728,164,850	91.02%
xiaoq.sports	6,682,323,364	91.02%
hykwf678233	32,485,304,794	91.02%
atyh	5,221,963,525	91.02%
thranax	4,603,903,335	3%
ericetchen	1,709,355,542	91.02%
stevewu	4,536,508,972	91.02%
kristinasiu	1,740,643,435	91.02%
liberatehongkong	280,883,286	100%
moleah	14,592,893,743	91.02%
trevorlp97	10,165,035,032	91.02%
trevormomo	2,083,749,959	91.02%
annzhao	13,927,624,079	91.02%
cherrylp147	658,797,115	91.02%
tonimontana.neo	0	0.47%
cn-trail	692,367,466	91.02%
chris55	781,434,240	91.02%
ladyalkaid	1,477,135,386	91.02%
lnakuma	11,216,021,915	91.02%
ibutterfly	1,102,257,875	91.02%
steemjiang	0	48%
starnote	106,079,040	48%
aagod	3,877,651,987	100%
toni.pal	0	0.98%
rkogod	3,873,766,797	100%
huiwilkins	3,869,637,531	100%
huiwilkins2	3,869,654,565	100%
moochain.net	107,082,426	48%
lemool	0	48%
moochain.com	0	48%
liebin	0	48%
bettyliu	0	48%
younggle	0	48%
dinggle	0	48%
kengod	3,859,239,008	100%
hunggod	3,869,653,259	100%
llgod	3,853,264,471	100%
aaken	3,865,784,076	100%
aarko	3,854,564,650	100%
moocer	0	48%
steem-zh	0	48%
kenchung1	31,133,311,461	91.02%
kenchung2	1,882,418,538	100%
kenchung3	1,881,736,475	100%
kenchung4	1,880,459,999	100%
kenchung5	1,874,814,008	100%
kenchung6	1,879,063,363	100%
kenchung7	1,879,244,196	100%
kenchung10	1,880,723,350	100%
youngoole	0	48%
imooc	0	48%
steem.buzz	1,707,274,569	91.02%
catanknight	2,606,652,099	91.02%
lovequeen	49,544,671,516	91.02%
wikicoin	0	48%
steemzh	0	48%
steemipfs	0	48%
hive-224466	0	48%
littleksroad	298,849,208,762	91.02%
dryuen	592,065,509	91.02%
curation.bot	0	0.17%
kitrewq000	6,346,230,528	91.02%
kikoxixi	22,175,849,795	91.02%
jywahaha	724,070,797,508	91.02%
musiccccat	398,783,728,194	91.02%
alwaysthinking	13,021,647,865	91.02%
xiaomalailiao	13,339,318,635	91.02%
weiweilove	2,979,451,616	91.02%