Password Authentication for Web and Mobile Apps is a new book for web and mobile developers who want to learn how secure password authentication works and implement it in their apps.
It answers almost all questions that developers have about password authentication, such as how to store passwords securely, how to remember users, how to implement multi-factor authentication, etc.
Some other topics that it covers:
- Email address validation.
- Unicode issues in usernames, emails, and passwords.
- Secure randomness and UUIDs.
- U2F / WebAuthn.
- JWT and signed cookies.
- Five password hashing functions — PBKDF2, bcrypt, scrypt, yescrypt, Argon2 — and their issues and vulnerabilities.
- Client-side password prehashing.
- Rate limiting.
- and more…
The book is available at https://dchest.com/authbook/
React.js is known for its virtual DOM, but as Facebook’s software engineer Bill Fisher said, the virtual DOM is only an implementation detail.
Last week we saw Facebook releasing React Native, which renders native OS components instead of DOM elements. Today Flipboard released React Canvas, a high performance React renderer for
Continue reading React Canvas — render React components to canvas
Continue reading React Native — write native apps with React.js
Continue reading 5 React.js + Flux tools
Everyone hates when something happens to that huge web form they were filling. Accidentally closed a browser window? Pressed a Back button? Computer crashed? “Arrgghh, have to fill the form again!” — says your user… or just leaves your website. If you don’t want this to happen, Garlic.js is here to help you!
Continue reading Garlic.js — automatically persist forms until submission
localForage is a project started at Mozilla for the purpose of providing a stable, simple key/value store API on top of various offline storage options available in modern browsers: IndexedDB, WebSQL, or localStorage.
Continue reading localForage — offline key/value store for browsers