Category: Node

Review: Stormpath for User Authentication in Node

This post was originally published on Medium by Stormpath user Ryan Busby. It is reprinted here with his permission. Why Stormpath, you ask? Stormpath offers easy integration and storage for account creation, management, and authorization. It can be configured to use JWT tokens and OAuth 2.0. Out of the box, Stormpath can provide login, signup, …

Securely Storing Files with Node, S3, and Stormpath

There are a lot of redundant problems you need to solve as a web developer. Dealing with users is a common problem: storing them, authenticating them, and properly securing their data. This particular problem is what we here at Stormpath try to solve in a reusable way so that you don’t have to. Another common …

Tutorial: Build a REST API for Your Mobile Apps using Node.js

Behind every great mobile app is a great backend, but building a REST API for your app can be a bit daunting if you haven’t done so before. Fear not! This tutorial will show you how to build your first REST API using Node.js, and connect it to an iOS or Android app! As a mobile …

Secure Password Hashing in Node with Argon2

Storing passwords securely is an ever-changing game. For the past few years (2013 -> 2015), Jean-Philippe Aumasson has been running a world-renowned Password Hashing Competition in which security researchers submit, validate, and vet the best password hashing algorithms. Just recently, the competition wrapped up, naming Argon2 king of the hashing algorithms. This is good news …

A Simple Web App With Node.js, Express, Bootstrap & Stormpath

Update Building for mobile not web? Check out our latest tutorial Build a REST API for Your Mobile Apps Using Node.js. Also, these code examples have been updated to reflect the 3.0 release of the express-stormpath integration. Here at Stormpath we <heart> Node.js – it’s so much fun to build with! We’ve built several libraries …

Using OAuth2 API Service Authentication with Node.js

So, you’re working with a shiny new API service in your latest project, and while reading API documentation stumble across something worrying: “OAuth2 Client Credentials Authentication Required”. Fear not, OAuth2 and the Client Credentials grant type are actually quite simple once you know what you’re working with. Today I’m going to show you how to …

Two Factor Authentication with Node.js and Yubikey

If you work in web development, chances are you’ve heard about a nifty little device called “Yubikey” that is becoming widely adopted as a simple and secure form of two-factor authentication. Yubikeys (pictured above) are small hardware devices that can be inserted into your computer’s USB port, or touched to the back of a NFC …

How to Add Billing to Your API – with Stripe, Stormpath, and Node.js

Update 2/29/16: These code examples have been updated to reflect the 3.0 release of the express-stormpath integration. Stormpath provides authentication tools for APIs, so we work closely with devs building new REST services. We also hear a lot about the challenges that come with building an API. Billing is often high on that list of …

Build An API Service in Node.js with Stormpath, Twilio and Stripe

Update 2/29/16: These code examples have been updated to reflect the 3.0 release of the express-stormpath integration. Building a full-fledged API service isn’t as hard as you may think. By taking advantage of some really useful API services and open source libraries, you can rapidly develop an API service in an incredibly short amount of …

Create and Verify JWTs with Node.js

JWT, access token, token, OAuth token.. what does it all mean?? Properly known as “JSON Web Tokens”, JWTs are a fairly new player in the authentication space. Being the cool new thing, everyone is hip to start using them. But are you doing it securely? In this article we’ll discuss user authentication best practices in …