Category: Node

Review: Stormpath for User Authentication in Node

This post was originally published on Medium by Stormpath user Ryan Busby. It is reprinted here with his permission. Why Stormpath, you ask? Stormpath offers easy integration and storage for account creation, management, and authorization. It can be configured to use JWT tokens and OAuth 2.0. Out of the box, Stormpath can provide login, signup, …

Securely Storing Files with Node, S3, and Stormpath

There are a lot of redundant problems you need to solve as a web developer. Dealing with users is a common problem: storing them, authenticating them, and properly securing their data. This particular problem is what we here at Stormpath try to solve in a reusable way so that you don’t have to. Another common …

Tutorial: Build a REST API for Your Mobile Apps using Node.js

Behind every great mobile app is a great backend, but building a REST API for your app can be a bit daunting if you haven’t done so before. Fear not! This tutorial will show you how to build your first REST API using Node.js, and connect it to an iOS or Android app! As a mobile …

Secure Password Hashing in Node with Argon2

Storing passwords securely is an ever-changing game. For the past few years (2013 -> 2015), Jean-Philippe Aumasson has been running a world-renowned Password Hashing Competition in which security researchers submit, validate, and vet the best password hashing algorithms. Just recently, the competition wrapped up, naming Argon2 king of the hashing algorithms. This is good news …

A Simple Web App With Node.js, Express, Bootstrap & Stormpath

Heads up… this article is old! For an updated version of this article, see Tutorial: Build a Basic CRUD App with Node.js on the Okta developer blog. Update Building for mobile not web? Check out our latest tutorial Build a REST API for Your Mobile Apps Using Node.js. Also, these code examples have been updated …

Using OAuth2 API Service Authentication with Node.js

Heads up… this article is old! For an updated version of this article, see Secure a Node API with OAuth 2.0 Client Credentials on the Okta developer blog. So, you’re working with a shiny new API service in your latest project, and while reading API documentation stumble across something worrying: “OAuth2 Client Credentials Authentication Required”. …

Two Factor Authentication with Node.js and Yubikey

If you work in web development, chances are you’ve heard about a nifty little device called “Yubikey” that is becoming widely adopted as a simple and secure form of two-factor authentication. Yubikeys (pictured above) are small hardware devices that can be inserted into your computer’s USB port, or touched to the back of a NFC …

How to Add Billing to Your API – with Stripe, Stormpath, and Node.js

Update 2/29/16: These code examples have been updated to reflect the 3.0 release of the express-stormpath integration. Stormpath provides authentication tools for APIs, so we work closely with devs building new REST services. We also hear a lot about the challenges that come with building an API. Billing is often high on that list of …

Build An API Service in Node.js with Stormpath, Twilio and Stripe

Update 2/29/16: These code examples have been updated to reflect the 3.0 release of the express-stormpath integration. Building a full-fledged API service isn’t as hard as you may think. By taking advantage of some really useful API services and open source libraries, you can rapidly develop an API service in an incredibly short amount of …

Create and Verify JWTs with Node.js

Heads up… this post is old! For an updated version of the tool demonstrated in this post, see this repo on GitHub. JWT, access token, token, OAuth token.. what does it all mean?? Properly known as “JSON Web Tokens”, JWTs are a fairly new player in the authentication space. Being the cool new thing, everyone …