Authorization In Node.js, All You Need To Know

#javascript #webdev #beginners #tutorial

Liquid syntax error: 'raw' tag was never closed

Top comments (2)

JoelBonetR 🥇 • Aug 29 '22

Hi @fredabod , nice introduction to this topic.

Pointing out improvement points:

Assuming that the headers look like that:

Authorization: {
    token: 'myToken'
}

I'd change

const token = req.headers.authorization.split(' ')[1];

for

const { token } = req.headers.authorization;

just to avoid runtime errors if something went wrong (e.g. Authorization being undefined) as well as for maintainability as you can know what it does by just reading at this while in the array hardcoded position implementation you can be wondering "what the heck does Authorization have?".

Also take a look at CORS and specially to the DB Salt concept so you get better security on this.

Hope it helps somehow, best regards 😁

FredAbod • Aug 30 '22

This was really helpful. Thank you @joelbonetr

DEV Community

Authorization In Node.js, All You Need To Know

Top comments (2)

Read next

Introduction to Cybersecurity

Angular Version 19: New Features and Updates

🧨 PHP 8.4 Officially Released!

Working with GitHub OAuth Authentication