Authentication
Patterns

Statefull

Stateless

Which maintains state or data or server side

Which has no state

Statefull

Number 24: DLXXXX123

Parking Ticket

Number: 24

Statefull

Number 24: DLXXXX123

Parking Ticket

Number: 24

Statefull

Number 24: DLXXXX123

Parking Ticket

Number: 24

Statefull

Number 24: DLXXXX123

Parking Ticket

Number: 24

Statefull

Number 24: DLXXXX123

Parking Ticket

Number: 24

Statefull

Parking Ticket

Number: 24

Statefull

Number 24: DLXXXX123

Number 23: DLXXXX134

Number 26: DLXXXX167

Number 27: DLXXXX123

State

Statefull

username / password

Statefull

username / password

session uid

Statefull

username / password

session uid

uid: 367

Statefull

uid: 367

Statefull

uid: 367

GET /users | uid: 367

Statefull

uid: 367

GET /users | uid: 367

Server checking who is user 367

Statefull

uid: 367

GET /users | uid: 367

response: all users

How to transfer uid?

cookies

response

headers

Express Flow

Auth Middleware

Checks for cookie value or uid, if valid calls next() else rejects the request

endpoint route

Statefull

Number 24: DLXXXX123

Parking Ticket

Number: 24

StateLess

Parking Ticket

Number: 24

StateLess

Parking Ticket

CarNumber 24: DLXXXX123

StateLess

Parking Ticket

CarNumber 24: DLXXXX123

StateLess

Parking Ticket

CarNumber 24: DLXXXX123

StateLess

Parking Ticket

CarNumber 24: DLXXXX123

StateLess

Parking Ticket

CarNumber 24: DLXXXX123

Authentication

By Vikash Gupta

Authentication Patterns

Authentication Patterns

Authentication Patterns

Statefull

Stateless

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

State

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

Statefull

How to transfer uid?

Express Flow

Auth Middleware

endpoint route

Statefull

StateLess

StateLess

StateLess

StateLess

StateLess

StateLess

Authentication

Authentication
Patterns

Authentication
Patterns

Authentication
Patterns