Basic Authentication
- This site implements secure logins using same-site, http-only cookies and server actions.
- Both session and JWT implementations have been implemented as a prerequisite to gain a better understanding of basic auth and the merits of proven third party open source solutions.
- For a complete working authentication solution using NextAuth.js and Oauth provides visit nextauth.syntapse.co.uk
- nextauth.syntapse.co.uk implements a full registration and authentication service using email confirmations and randomised verification URLs
- As this is a test and demonstration site only, full login capabilities will not be developed further here.
This test site currently supports both JWT and session authentication! If things arent working as expected clear cookies.
JWT based authentication
△
Features
- This is designed to work exactly as the (standard session token implementation)[/actions/login]
- The JWT is also stored in a cookie and has all the same security benefits however there is no server side token lookup
- The absence of a lookup and reliance on user retrieval makes this a more scalable solution than session tokens
Login/register
Default username: 123, password: 123
This website implements both session and jwt logins for demonstration purposes only and is not production ready. For a complete production ready solution visit the Syntapse NextAuth demo
username:
password: