Backend Jul 2, 2026 6 min read
Cookie vs Token Authentication
Compare cookie and token authentication for backend apps, including sessions, JWTs, CSRF, XSS, storage, CORS, mobile clients, and API tradeoffs.
Tag
5 articles with this tag.
Backend Jul 2, 2026 6 min read
Compare cookie and token authentication for backend apps, including sessions, JWTs, CSRF, XSS, storage, CORS, mobile clients, and API tradeoffs.
Backend Jun 30, 2026 5 min read
Learn how refresh token rotation works, why reuse detection matters, and how backend teams can design safer token refresh, logout, and revocation flows.
Backend Jun 29, 2026 4 min read
Learn common JWT claims for backend authentication, including sub, iss, aud, exp, nbf, iat, jti, scopes, roles, tenant context, and validation mistakes.
Backend Apr 12, 2026 6 min read
Compare access tokens and refresh tokens in backend authentication, including lifetime, storage, rotation, revocation, and security tradeoffs.
Backend Jan 28, 2026 5 min read
Understand JWT and server-side session authentication, including storage, revocation, scaling, security risks, and common backend use cases.