Category: General

The World’s Leading RFID Manufacturer Saves Time, Money, and Sleep with Stormpath

SMARTRAC is the world’s leading manufacturer of RFID transponders. Used in a variety of applications from U.S. passports, to pet microchips, to electronic toll payment transponders, SMARTRAC produces a staggering 1.7 billion RFID responder tags annually. The possibilities of the technology are virtually limitless.

Stormpath Raises $15M Series B Financing

When we first started Stormpath, most people rejected our product vision: “I would never outsource my user data and functionality – the most important part of my application – to a third-party service.” In 2011, the objections to a Customer Identity API were many, and they were valid. Cloud adoption was nascent. API services were …

The Problem with Securing Single Page Applications

Update 5/12/2016: Building token authentication in your single page application? JJWT is a Java library providing end-to-end JWT creation and verification, developed by our very own Les Hazlewood. Forever free and open-source (Apache License, Version 2.0), JJWT is simple to use and understand. We’d love to have you try it out, and let us know what …

OAuth is not Single Sign-On

Heads up… this article is old! For an updated version of this article, see What the Heck is OAuth? on the Okta developer blog. Update 5/12/2016: Building a token authentication with OAuth? JJWT is a Java library providing end-to-end JWT creation and verification, developed by our very own Les Hazlewood. Forever free and open-source (Apache License, Version …

Build Secure User Interfaces Using JSON Web Tokens (JWTs)

Update 5/12/2016: JJWT is a Java library providing end-to-end JWT creation and verification, developed by our very own Les Hazlewood. Forever free and open-source (Apache License, Version 2.0), JJWT is simple to use and understand. We’d love to have you try it out, and let us know what you think! (And, if you’re a Node …

Three Quick Ways to Increase Customer Data Security

The world of user data security is vast, complicated, and for many teams, difficult to navigate. When working with a legacy application, it can be difficult to determine the first, easy steps to ensure your user and customer data is more secure. But a few quick tips can dramatically improve user data security in most …

Easy Unified Identity

Unified Identity is the holy grail of website authentication. Allowing your users to log into your website through any mechanism they want, while always having the same account details, provides a really smooth and convenient user experience. Unfortunately, unified identity can be tricky to implement properly! How many times have you logged into a website …

What the Heck is OAuth?

Heads up… this article is old! For an updated version of this article, see What the Heck is OAuth? on the Okta developer blog. Stormpath spends a lot of time building authentication services and libraries, we’re frequently asked by developers (new and experienced alike): “What the heck is OAuth?”. There’s a lot of confusion around …

How to Write Middleware for Express.js Apps

Express.js is a lightweight HTTP framework for node.js that allows you to create a variety of applications, from a standard website to a REST API. It gets out of your way with a minimal API that you fill in with your custom needs. The structure of ExpressJS is this: everything is “middleware”. If you’ve built …

Why HTTP is Sometimes Better than HTTPS

UPDATED April 2, 2015: This was an April Fools Joke. Read. Laugh. Learn. If you’re building web services, you should most definitely be using HTTPS. As a security company, we frequently get questions here at Stormpath from developers regarding security best practices. One of the most common questions we get is: Should I run my …