Security Analysis of my implemented Web App Authentication System
A detailed look at the security mechanisms behind the authentication flow—how threats are mitigated, tokens are validated, and sessions are protected
Dec 11, 20256 min read15
Command Palette
Search for a command to run...
#infosec
Articles tagged with #infosec
Deep Dive: The User Authentication Flow in my implemented Web App
A step-by-step walkthrough of how the browser, IdP, Redis, HumHub, and CloudFront work together to authenticate a user in a real production system.
Dec 10, 20256 min read19
Architecture Overview of my implemented Web App Authentication System
A high-level walkthrough of how the CSL web app authenticates users through a hybrid IdP + server-session design
Dec 9, 20258 min read47
Sessions vs Token-Based Authentication
A practical look at how stateful sessions, stateless tokens, and hybrid models work—and how they shape real-world authentication.
Dec 9, 20258 min read10
Authentication Flows: Choosing the Right One
A practical guide to understanding OAuth2 and OIDC flows—and how to choose the right one for your app.
Dec 8, 20258 min read11
Understanding OAuth2 & OpenID Connect (OIDC)
A clear guide to how OAuth2 and OIDC work together to provide modern authentication and secure delegated access.
Dec 8, 202511 min read11