Best of AuthenticationJune 2025

  1. 1
    Article
    Avatar of systemdesigncodexSystem Design Codex·44w

    Essential Roadmap to Learn API Development

    A comprehensive guide covering the essential topics for learning API development, from understanding basic concepts like REST and HTTP methods to advanced topics including authentication mechanisms (OAuth 2.0, JWT), API design principles, testing strategies, and deployment considerations. The roadmap includes practical tools like Postman and OpenAPI, security best practices, and hands-on experience with public APIs from services like Google Maps and Stripe.

  2. 2
    Video
    Avatar of bytegradByteGrad·45w

    Next.js Tutorial 2025 - Start Your Next.js Journey Here

    A comprehensive Next.js tutorial covering the fundamentals of building full-stack applications. Explains the difference between server and client components, demonstrates data fetching with server components, shows how to create dynamic routes, and covers server actions for data mutations. The tutorial walks through building a blog application with database integration using Prisma, form handling, and authentication setup with Kinde. Key concepts include the app router structure, file-based routing, and the benefits of server-side rendering for performance optimization.

  3. 3
    Video
    Avatar of youtubeYouTube·42w

    Build and Deploy a Full Stack Movie Ticket Booking App using React js | MERN Stack Project

    A comprehensive tutorial for building a movie ticket booking application using the MERN stack. The project includes user authentication with multiple sign-up options (email, Google, phone), seat selection functionality, payment processing, and an admin dashboard for managing movies and bookings. Features include email notifications, seat reservation with timeout, multi-session authentication, and responsive design with Tailwind CSS. The tutorial covers project setup, component creation, routing, and deployment using Vercel.

  4. 4
    Article
    Avatar of selfhstselfh.st·46w

    Self-Host Weekly (6 June 2025)

    Weekly newsletter covering self-hosted software developments, featuring Tinyauth as a simple authentication middleware alternative to complex platforms like Authelia and Authentik. Highlights include U.S. government's Direct File tax software release, Wyze's new camera light bulb for homelabbers, and a JSON formatting tip using jq command line tool.

  5. 5
    Article
    Avatar of lnLaravel News·45w

    Laravel News

    GuacPanel is a Laravel starter kit that combines Vue.js, Inertia.js, and Tailwind CSS to provide a complete foundation for modern web applications. It includes authentication with login tracking, an admin dashboard, smart data tables, file management with drag-and-drop uploads, automated backups, activity logging, role-based permissions, session management, and passwordless login options. The kit offers responsive UI components with dark mode support and comprehensive security features for building production-ready applications.

  6. 6
    Article
    Avatar of techleaddigestTech Lead Digest·44w

    The Ultimate Guide to JWT Vulnerabilities and Attacks (with Exploitation Examples)

    JWT vulnerabilities pose serious security risks in modern web applications. Common attacks include signature bypass, algorithm confusion (switching from RS256 to HS256), weak secret brute-forcing, and injection attacks through header parameters like 'kid' and 'jku'. The guide covers exploitation techniques for each vulnerability type, from trivial signature removal to sophisticated ECDSA psychic signature attacks. Key defense strategies include strict algorithm validation, secure key management, input sanitization, and proper signature verification implementation.

  7. 7
    Article
    Avatar of ionicIonic Blog·46w

    Announcing Ionic 8.6

    Ionic Framework 8.6 introduces a new Input OTP component for one-time password inputs with intelligent handling and flexible styling options. The release includes enhanced Datetime navigation with adjacent month display, iOS 18 haptic feedback for toggles, and a major Stencil Core update from v4.20 to v4.33. The Stencil update brings significant improvements to SSR, scoped styles, Shadow DOM handling, and accessibility features. Additional fixes address button accessibility, input focus behavior, modal functionality, and various component-specific issues.

  8. 8
    Video
    Avatar of communityCommunity Picks·44w

    Create an LMS Course Platform with Next.js, Arcjet, Better-Auth, and Stripe (Part 1/2)

    A comprehensive tutorial for building a complete Learning Management System (LMS) using Next.js 15, Better Auth for authentication, Prisma with Neon database, and Stripe for payments. The guide covers setting up the project structure, implementing authentication with GitHub OAuth and email OTP, creating a responsive UI with Tailwind CSS and shadcn/ui components, configuring dark mode, and establishing database connections. Part 1 focuses on the foundational setup including project initialization, authentication system implementation, and database configuration.

  9. 9
    Article
    Avatar of hordeHorde·45w

    🚀 Next.js Auth Starter Kit with Better Auth

    A starter kit for Next.js applications featuring Better Auth for authentication with email/password and Google OAuth integration. The stack includes Shadcn for UI components, Drizzle ORM for database operations, and Neon for serverless Postgres hosting. The project is open-source and includes a video tutorial demonstrating the complete implementation process.

  10. 10
    Article
    Avatar of golangnutsGo Developers·44w

    Building Real-World Go RESTful APIs with gorest: A Practical Approach for Modern Developers

    gorest is a production-ready Go starter kit that simplifies building secure RESTful APIs by providing multi-database support, flexible authentication (Basic Auth, JWT, 2FA), security features like CORS and rate limiting, and a modular architecture. It addresses common pain points in Go API development by offering comprehensive tooling beyond basic routing frameworks, including auto migrations, graceful shutdown, and practical examples for real-world CRUD operations.

  11. 11
    Video
    Avatar of TechWithTimTech With Tim·46w

    How To Build a FastAPI & React Full Stack App | Clerk, Databases, LLMs & More

    A comprehensive guide to building a full-stack application using FastAPI for the backend and React for the frontend. The tutorial covers implementing authentication with Clerk, setting up databases with SQLAlchemy, integrating OpenAI's API for generating coding challenges, and creating a complete user interface with routing and state management. The project demonstrates building a coding challenge generator with user quotas, question history, and multiple-choice questions powered by AI.

  12. 12
    Article
    Avatar of baeldungBaeldung·45w

    Authorize Request for Certain URL and HTTP Method in Spring Security

    Spring Security provides flexible mechanisms to authorize requests based on URLs, HTTP methods, and user roles. The tutorial demonstrates implementing role-based access control in a blogging platform where users can manage their own posts while admins have broader permissions. Key concepts include configuring SecurityFilterChain for URL-based authorization, using @PreAuthorize for method-level security, implementing custom UserDetailsService for database authentication, and creating service layers that enforce business logic with proper access controls. The implementation covers user registration, authentication, and CRUD operations with appropriate security constraints.

  13. 13
    Article
    Avatar of communityCommunity Picks·46w

    BetterAuth vs NextAuth: Choose the Right Auth Library for Your SaaS

    BetterAuth and NextAuth are both open-source authentication libraries for Node.js/TypeScript projects that let developers manage user accounts in their own databases. BetterAuth offers superior developer experience with TypeScript-first design, built-in features like 2FA and rate limiting, and a plugin ecosystem for advanced functionality like multi-tenancy. NextAuth provides broader OAuth provider support and established stability but requires more manual configuration for advanced features. Both are free to use with no per-user costs, making them cost-effective alternatives to hosted authentication services. BetterAuth is recommended for new TypeScript projects requiring advanced auth features, while NextAuth suits simpler Next.js applications with basic authentication needs.

  14. 14
    Article
    Avatar of laraveldevLaravel Dev·42w

    Laravel 10 JWT Authentication: Secure Login & API Tokens

    A tutorial covering JWT (JSON Web Token) authentication implementation in Laravel 10, focusing on secure user login and API token management. The content demonstrates how to set up JWT-based authentication for API endpoints, handle token generation and validation, and implement secure login mechanisms in Laravel applications.

  15. 15
    Article
    Avatar of tcTechCrunch·43w

    Better Auth, an authentication tool by a self-taught Ethiopian dev, raises $5M from Peak XV, YC

    Better Auth, an open-source TypeScript authentication framework, has raised $5M seed funding from Peak XV and Y Combinator. Built by self-taught Ethiopian developer Bereket Engida, the tool allows developers to implement authentication directly in their databases rather than relying on external services like Auth0 or Firebase. The framework has gained significant traction with 150,000+ weekly downloads and 15,000+ GitHub stars, particularly among AI startups needing custom authentication flows. Unlike hosted services, Better Auth keeps user data on-premise and offers flexible customization options.

  16. 16
    Article
    Avatar of lnLaravel News·44w

    Larallow is a Permissions Package With Support for Scopes

    Larallow is a new Laravel package for managing roles and permissions with advanced features like scoped roles, polymorphic relations, and translation support. It provides a fluent API for creating permissions, assigning them to users through roles or directly, and checking capabilities. Key features include support for multiple actor models, scoped permissions via polymorphic relationships, built-in translation support, and Blade directives for view-level permission checks. The package is still in early development and hasn't reached v1.0.0 yet.

  17. 17
    Article
    Avatar of allnextjsAll NextJS·43w

    Deailing with OAuth SSR in a Next.js project

    A guide covering how to properly implement OAuth authentication with server-side rendering in Next.js applications, addressing common challenges and best practices for handling authentication state on the server side.

  18. 18
    Article
    Avatar of tailscaleTailscale·44w

    Managing usernames and passwords in-house is so 2020

    Modern SaaS companies should stop managing usernames and passwords in-house and instead use established identity providers like Google, Microsoft, or Apple. Open standards like OAuth2 and OIDC enable secure, friction-free authentication while reducing security risks and operational overhead. Professional identity providers offer superior security, seamless user experience, built-in MFA, and eliminate password breach risks. Tailscale demonstrates this approach by using SSO-only authentication and offers tsidp, an open-source OIDC server that provides control while leveraging trusted identity foundations.

  19. 19
    Article
    Avatar of hordeHorde·44w

    🚀 Better Auth Starter: Now with Forgot Password Feature!

    Better Auth Starter, an open-source authentication solution, has added a forgot password feature with email delivery through Resend and Shadcn UI components. The update aims to improve user experience by providing password reset functionality. Resources include a tutorial video and GitHub repository for implementation.

See all Authentication archives