Final Thoughts
\nWith the increasing cybersecurity threat landscape in the digital-first era, MFA prompt bombing could be the most challenging thing to deal with.
\nBusinesses need to understand the risks associated with account takeovers through various attacks, including MFA prompt bombing, and should plan overall security infrastructure accordingly.
\nOrganizations can invoke the true potential of risk-based authentication (RBA) to overcome the challenges pertaining to MFA prompt bombing.
\n\n","frontmatter":{"date":"August 08, 2022","updated_date":null,"description":"The MFA prompt attacks typically leverage MFA fatigue, where users get annoyed and unknowingly or unwillingly accept authentication attempts initiated by cyber attackers. This post uncovers the aspects associated with MFA prompt bombing attacks and how businesses can reinforce their overall security infrastructure.","title":"MFA Prompt Bombing: Is it a New Threat Vector to Worry About?","tags":["MFA","risk-based authentication","user access"],"pinned":null,"coverImage":{"childImageSharp":{"fluid":{"aspectRatio":1.3986013986013985,"src":"/static/dfe38be88507741cfd42df8884a69e39/33aa5/mfa-prompt.jpg","srcSet":"/static/dfe38be88507741cfd42df8884a69e39/f836f/mfa-prompt.jpg 200w,\n/static/dfe38be88507741cfd42df8884a69e39/2244e/mfa-prompt.jpg 400w,\n/static/dfe38be88507741cfd42df8884a69e39/33aa5/mfa-prompt.jpg 768w","sizes":"(max-width: 768px) 100vw, 768px"}}},"author":{"id":"Alok Patidar","github":null,"avatar":null}}}},{"node":{"excerpt":"Introduction Technology has evolved leaps and bounds in the past decade, and every business, regardless of the niche, has already jumped on…","fields":{"slug":"/identity/loginradius-ceo-shifting-data-strategies/"},"html":"Introduction
\nTechnology has evolved leaps and bounds in the past decade, and every business, regardless of the niche, has already jumped on the digital transformation bandwagon.
\nWhether we talk about incorporating smart devices or adopting cloud computing for thriving business success, technology has undoubtedly laid the foundation for a successful business in this era.
\nHowever, integrating technology into business doesn’t guarantee a secure IT infrastructure, especially when cybercriminals find new ways to exploit customer identities.
\nSince data is the essential fuel that keeps businesses up and running, a little sneak into crucial customer details can cause massive destruction for an enterprise in terms of hefty fines and reputational damages.
\nWith more and more businesses taking place online and grappling with the new privacy and data security complexities, there’s an immediate need to reinvent data management strategies.
\nLet’s understand the role of privacy and data management and how businesses can take the competitive edge.
\nPrivacy Management in 2022 and Beyond
\nThings have rapidly changed in the digital business landscape, and customers are increasingly becoming obsessed with how enterprises manage their personal data.
\nFurthermore, global data privacy and security regulations are also becoming more stringent. This means that businesses that aren’t complying with the regulations like the GDPR and the CCPA would eventually face issues pertaining to customer trust and loyalty.
\nHence, if a brand needs to build customer loyalty and trust in this digital-first era, it should comply with data privacy and security regulations.
\nNow talking about the true potential of customer data, brands that aren’t leveraging customer insights would surely lag behind their competitors.
\nOver a decade, customer insights have been the game-changer for businesses striving for overall success since they can offer personalized customer journeys and deliver what their end users demand.
\n“Rapid technology adoption has undeniably helped organizations navigate their digital transformation journey. However, the speed of technology adoption in a data-centric landscape without assessing underlying risks has created endless privacy pitfalls\"
\nHence, the ones seeking competitive advantage without losing customer trust must rethink their privacy and data management policies.
\nLet’s look at data and privacy shifts that could help businesses grow in 2022 and beyond.
\n#1. Data literacy
\nOrganizations that go out-of-the-box and separate themselves from competitors will be those willing to adapt to a new way of working with privacy and agility.
\nData literacy is swiftly becoming the need of the hour within a business organization that requires a top-down data management approach that ensures data is viewed as insights to drive overall business growth.
\nFor instance, valuable customer data collected through registration forms can be utilized to build a personalized customer experience that offers customers what they’re actually looking for by carefully examining their behavior and preferences.
\n#2. Shifting from conventional data strategy
\nRelying on old-school data strategy could be fatal for businesses serving customers online since market leaders already leverage cutting-edge technologies and tools to stand ahead of the curve.
\nFor instance, most businesses now rely on identity management solutions to ensure they comply with global data privacy and regulatory requirements.
\nAlso, a customer identity and access management (CIAM) solution can help businesses deliver a flawless user experience reinforced by security.
\nMoreover, customers love to share their personal details if they are catered to with a rich user experience through a CIAM with progressive profiling. This feature allows brands to collect crucial customer data gradually over time instead of a huge registration form.
\n#3. Managing security, privacy, compliance, and user experience
\nBrands cannot just focus on user experience anymore; customers now demand security, privacy, compliance, and customer experience- all under one roof.
\nThe market is flooded with endless options for almost every business niche, and customers won’t take a second thought to switch if they aren’t served with the desired experience.
\nIn a nutshell, if a business offers privacy, security, compliance, and user experience through its platform, it’ll stand ahead of the competition.
\nA cutting-edge CIAM solution can help brands overcome these challenges like a breeze.
\nIn Conclusion
\nThe modern digital business landscape has offered endless opportunities for enterprises to leverage their customer insights. However, they need to strategize things from a whole new different perspective.
\nWhether it’s the incorporation of a reliable CIAM or other privacy management solutions, brands have to put their best efforts into ensuring robust privacy management.
\n\n","frontmatter":{"date":"August 02, 2022","updated_date":null,"description":"With more and more businesses taking place online and grappling with the new privacy and data security complexities, there’s an immediate need to reinvent data management strategies. Let’s understand the role of privacy and data management and how businesses can take the competitive edge.","title":"Privacy-Centric Enhancements: CEO Rakesh Soni Shares His Thoughts on Shifting Data Strategies","tags":["data privacy","cloud computing","progressive profiling"],"pinned":null,"coverImage":{"childImageSharp":{"fluid":{"aspectRatio":1.3888888888888888,"src":"/static/1bd8d21614ab2fc2584ea37413745cc6/33aa5/privacy-centric.jpg","srcSet":"/static/1bd8d21614ab2fc2584ea37413745cc6/f836f/privacy-centric.jpg 200w,\n/static/1bd8d21614ab2fc2584ea37413745cc6/2244e/privacy-centric.jpg 400w,\n/static/1bd8d21614ab2fc2584ea37413745cc6/33aa5/privacy-centric.jpg 768w","sizes":"(max-width: 768px) 100vw, 768px"}}},"author":{"id":"Rakesh Soni","github":"oyesoni","avatar":"rakesh-soni.jpg"}}}},{"node":{"excerpt":"Introduction Marketers are no longer in the business of attracting customers; they're responsible for keeping them engaged. That shift has…","fields":{"slug":"/growth/authentication-critical-customer-acquistion-tool/"},"html":"Introduction
\nMarketers are no longer in the business of attracting customers; they're responsible for keeping them engaged. That shift has led to a new role in marketing — user authentication.
\nAuthentication is the process of confirming the identity of a user. In the digital world, it's used to verify that someone is who they say they are and that their information is accurate.
\nIt's an important responsibility because it helps marketers protect their brands from fraud and abuse. From phishing scams to fake reviews, there are many ways scammers try to game the system to steal money or reputations.
\nWhat is User Authentication?
\nUser authentication is the process of verifying that a user is who they claim to be.
\nAuthentication is the most important security feature any application can have because it's the gateway through which users interact with your data. Without proper authentication, an attacker could impersonate your users and access sensitive information or perform unauthorised actions on their behalf.
\nMoreover, authentication is often confused with authorization, which determines whether a user has the right to perform an action on a resource. That's why it's best to think of authentication as \"proving you are who you say you are\" and authorisation as \"determining what actions can be performed.\"
\nThis distinction is important because some authentication mechanisms provide very strong guarantees about who can perform certain actions, while others only provide weaker guarantees about behaviour over time. For example, someone who knows your password may be able to access your account now but not later; however, someone who has been issued an RSA token or a biometric fingerprint reader will always be able to access your account until they lose possession of their device or their fingerprint changes significantly enough that their device no longer recognizes them.
\nHow Marketers Can Leverage User Authentication?
\nAuthentication is important in marketing because it helps to ensure that only real users get access to your content and products. If you allow anonymous access to your website or application, then anyone could be a potential customer of your product. However, only those who have registered themselves with you can access your content and services if you use authentication.
\nAuthentication helps marketers in many ways:
\n1. Reduce fraud with customer verification.
\nUser authentication is the process of collecting information about a user's identity to verify that they are who they claim to be. By authenticating users, you can ensure that only authorized users have access to your website or platform. This helps protect your site from fraud, abuse, and other security issues that might arise if it were not securely protected.
\nA Good Read: 5 Ways to Improve Your Customer Verification Process
\n2. Improve customer experience.
\nUser authentication allows marketers to better understand who their customers are and what they want. This can help improve the overall customer experience. For example, if you’re an online retailer, it would be helpful to know if a person has purchased from your site before or not so that you can tailor their experience accordingly.
\nWhen prospective customers see that you're taking steps to verify their identities before doing business with them, it sends a signal that you're serious about security and privacy — which can build trust among potential buyers who might otherwise be wary of providing personal information to an unknown entity online.
\n3. Boost conversion rates.
\nAuthentication tools can help boost conversion rates by reducing the number of duplicate account registrations and false positives. When a user enters their email address or phone number, they'll receive a confirmation code via text or email to verify that they're not registering multiple accounts with the same information. This helps reduce abandoned shopping carts and returns while also increasing conversions.
\nThe best part? You don't need to build any additional forms or create new pages on your site — you can just add a login box and ask people to log in before they give you their feedback. Using user authentication in this way is particularly useful if you're looking for feedback on something specific, like an upcoming product launch or a new feature that's not yet available publicly.
\n4. Increase customer retention.
\nCustomer retention is one of the biggest challenges in the industry today. Customers are constantly being bombarded by new products, offers, and promotions. It’s difficult to keep them engaged and coming back to your brand.
\nUser authentication allows marketers to improve customer retention by offering them a more personalized experience. By leveraging user authentication, marketers can tailor their marketing efforts toward their existing customers.
\n5. Improve content personalization.
\nBy identifying their users' preferences, marketers can create personalized content that resonates with them based on their previous actions on the site. For example, if someone has visited a certain page before and viewed a certain product, they will likely be interested in related products as well. With this information at hand, it's easier for brands to cater to individual needs by showing them relevant content and products over time that align with their interests.
\nBy improving content personalization and increasing customer satisfaction, marketers can generate more revenue through repeat purchases and referrals from happy customers!
\nWrapping Up
\nAs the world becomes more connected, users have become increasingly more aware of their digital privacy. In fact, according to a recent study from Google and Ipsos, 70% of Americans are concerned about their online privacy.
\nMarketers need to strike a balance between user security and experience when it comes to user privacy. That means providing security services that won't frustrate customers who want to get the most out of their devices and applications.
\n\n","frontmatter":{"date":"July 29, 2022","updated_date":null,"description":"Authentication is the most important security feature any application can have because it's the gateway through which users interact with your data. This blog explains how marketers can leverage user authentication.","title":"Authentication Has Gone Mainstream: Are Marketers Ready to Take the Responsibility?","tags":null,"pinned":null,"coverImage":{"childImageSharp":{"fluid":{"aspectRatio":1.7094017094017093,"src":"/static/a3c98cbf34311a97198a605d6fc32266/33aa5/auth-marketers.jpg","srcSet":"/static/a3c98cbf34311a97198a605d6fc32266/f836f/auth-marketers.jpg 200w,\n/static/a3c98cbf34311a97198a605d6fc32266/2244e/auth-marketers.jpg 400w,\n/static/a3c98cbf34311a97198a605d6fc32266/33aa5/auth-marketers.jpg 768w","sizes":"(max-width: 768px) 100vw, 768px"}}},"author":{"id":"Navanita Devi","github":null,"avatar":null}}}},{"node":{"excerpt":"Introduction We’re in an era where rich customer experiences backed with robust identity security is all that user need from businesses. And…","fields":{"slug":"/identity/fix-identity-to-fix-citizens-security/"},"html":"Introduction
\nWe’re in an era where rich customer experiences backed with robust identity security is all that user need from businesses. And the same is expected from private sector organizations.
\nHowever, when we talk about citizens’ experience and security, most government and public sector organizations seem impotent to match the level of security and usability.
\nHence, issues about identity management in the government sector linger on that can severely impact citizens’ privacy and information security.
\nSo, what can be the ideal solution to ensure robust identity security without hampering user experience in the public sector?
\nHere’s where the crucial role of identity management comes into play!
\nIdentity management has been a game-changer for enterprises for decades as it helps businesses succeed by ensuring the highest level of security and great user experience.
\nLet’s understand the aspects of leveraging identity management through a reliable customer identity and access management (CIAM) platform for fixing security and usability issues in the public sector.
\nThe Power of Digital Identity for Smart Cities
\nWith population growth and expanding public services, cities must be innovative about providing services to all people without compromising service quality. There is a need for a single platform where all facilities are centralized and customer experience is considered.
\nIdentity management in the government sector is a great way to get started as it can prove a citizen’s identity through diverse government channels without compromising user experience.
\nAs the government invokes the potential of secure digital identities, citizens would access core services and resources without hassle.
\nMoreover, every citizen requires some kind of public service, so securely handling a unique number of identities becomes a tough nut to crack for the government. Here’s where the need for digital identity management comes into play.
\nA smart CIAM (consumer identity and access management) solution like LoginRadius helps public sector organizations manage multiple identities efficiently without hampering user experience.
\nLet’s learn how a CIAM solution like LoginRadius can deliver a flawless digital experience to civilians that pushes overall development reinforced by adequate security.
\n\n","frontmatter":{"date":"July 29, 2022","updated_date":null,"description":" Identity management has been a game-changer for enterprises for decades as it helps businesses succeed by ensuring the highest level of security and great user experience. Let’s understand the aspects of leveraging identity management through a reliable customer identity and access management (CIAM) platform for fixing security and usability issues in the public sector.","title":"The Role of Identity Management in Securing Your Citizen’s Data","tags":["digital identity","smart cities","authentication"],"pinned":null,"coverImage":{"childImageSharp":{"fluid":{"aspectRatio":1.492537313432836,"src":"/static/ded0349745f5f5931dfb105205ffb549/33aa5/citizen-sec.jpg","srcSet":"/static/ded0349745f5f5931dfb105205ffb549/f836f/citizen-sec.jpg 200w,\n/static/ded0349745f5f5931dfb105205ffb549/2244e/citizen-sec.jpg 400w,\n/static/ded0349745f5f5931dfb105205ffb549/33aa5/citizen-sec.jpg 768w","sizes":"(max-width: 768px) 100vw, 768px"}}},"author":{"id":"Yash Rathi","github":"yashrathi29","avatar":null}}}},{"node":{"excerpt":"Introduction It is essential to protect your APIs for a secure experience, and JSON Web Token (JWT) authentication allows you to protect…","fields":{"slug":"/engineering/guest-post/how-to-implement-jwt-authentication-in-deno/"},"html":"Introduction
\nIt is essential to protect your APIs for a secure experience, and JSON Web Token (JWT) authentication allows you to protect your APIs so that an unauthorized person will not have access.
\nPrerequisites
\nThis is a hands-on tutorial to follow. To get the most out of it, ensure you have:
\n- \n
- A code editor of your choice \n
- Basic knowledge of JavaScript/TypeScript. \n
- Basic knowledge of MongoDB \n
- Postman or Insomia installed \n
What is Deno?
\nDeno is developed in Rust. It is a modern runtime environment for JavaScript/TypeScript and a WebAssembly that uses the Google V8 engine. It is simple and safe. It implements web platform standards and provides web platform capabilities.
\nDeno’s features are intended to enhance Node.js’s capabilities. It’s secure by default, with no access to files, networks, or the environment except explicitly enabled. And it supports both JavaScript and TypeScript out of the box.
\nWhy Use Deno?
\nDeno is a well-thought-out modular system. Apart from its simplicity and high security, there are so many other reasons to use Deno:
\n- \n
- Outside of an async function, you can use await \n
- No setting is required for TypeScript to work \n
- There are no dependencies, and it ships as a single executable \n
- A dependency inspector and a code formatter are built-in \n
- Packages in Deno are decentralized \n
What is JSON Web Token?
\nJSON Web Token, popularly called JWT, is an open standard that offers a concise and self-contained method for securely transferring data between parties as a JSON object. It holds information in an easy-to-access format for developers and computers; the token's compact size makes it simple to send through URL, POST parameter, or HTTP header. It allows two parties — a client and a server — to share information securely. A secret or public/private key pair is used to digitally sign the information in a JWT.
\nAuthentication is the primary use of JWT. It is assigned to a user after they sign in to an application, and with the assigned JWT, a user can request other routes.
\nInstall Deno
\nWithout too many shenanigans, let's start by installing Deno!
\nDeno installation in Windows isn't as smooth sailing as on Mac or Linux. Unlike in Node.js, where you run a command on your terminal, Deno in Windows can be installed using PowerShell, Scoop (a command-line installer), or Chocolatey (a package manager). Click here for the guide on how to install Deno.
\nTo install Deno with PowerShell, open your PowerShell and run the following command:
\niwr https://deno.land/x/install/install.ps1 -useb | iexRelax while Deno is being installed. When completed, exit PowerShell and close and reopen a terminal. The new PATH is activated by closing and reopening the terminal. Now that you have installed Deno, let's check the version of Deno.
\nTo check the version of your installed Deno, run: deno -V
Project Setup
\nWith installation out of the way, let us set up your project. Create a folder DenoAPI_JWT_Auth; you can call it any name you choose. Create an app.ts file and a folder src in your folder.
Inside your src folder, create the following folders: controllers, database, middlewares, routes, schema, and utils.
Your project directory should look as follows:
\nDenoAPI_JWT_Auth
│\n└─src
\n│ └───controllers
\n│ │\n│ └───database
\n│ │\n│ └───middlewares
\n│ │\n│ └───routes
\n│ │\n│ └───schema
\n│ │\n│ └───utils
\n└─app.ts
Create Oak Server
\nNext is to create your Oak server. Oak is a Deno middleware system that provides a router middleware for HTTP servers.
\nGo to app.ts, import Application from the Deno Oak URL, create an instance of the application, define your port, and call a middleware, as follows.
app.ts
import { Application } from "https://deno.land/x/oak/mod.ts";\n\nconst app = new Application();\nconst PORT = 8080;\n\n app.use((ctx, next) => {\n ctx.response.body = 'Welcome';\n next();\n });\n\nconsole.log(`Application is listening on port: ${PORT}`);\n\nawait app.listen({port:PORT});Let's quickly run your server: to run the server, use deno run --allow-net app.ts
Deno will always request permission to use your network. --allow-net gives Deno permission to all network calls.
You should see Application is listening on port: 8080
Now, in your routes folder, create a file called allRoutes.ts, and set up your router by importing Router from the oak URL, then create an instance of the router and export the default router.
routes.allRoutes.ts
import { Router } from "https://deno.land/x/oak/mod.ts";\n\nconst router = new Router();\n\nexport default router;Moving on, you need to modify app.ts. So, go to app.ts and import the router. Let the app use router.routes() and router.allowedMethods() methods, then remove the middleware, so it doesn't overshadow the imported routes. The allowedMethods() tells Deno to include all routes by your router.
app.ts
import { Application } from "https://deno.land/x/oak/mod.ts";\nimport router from "./src/routes/allRoutes.ts";\n\nconst app = new Application();\nconst PORT = 8080;\n\napp.use(router.routes());\napp.use(router.allowedMethods());\n\nconsole.log(`Application is listening on port: ${PORT}`);\n\nawait app.listen({port:PORT});You can rerun your app with the same command: deno run --allow-net app.ts
Create User Data
\nNow, you need to create user data. But before that, let's connect your application to the MongoDB database.
\n- \n
- Go to your
databasefolder \n - Create a file called
connectBD.ts\n - Import MongoClient from the Deno MongoDB URL \n
- Create an instance of MongoClient \n
- Connect your database \n
- Export default \n
database.connectDB.ts
import { MongoClient } from "https://deno.land/x/mongo@v0.30.0/mod.ts";\n\n // Connecting to a Mongo Database\n const client = new MongoClient();\n \n const dbString = "DB_String"\n\n await client.connect(dbString)\n \n console.log("Database connected!");\n \n const db = client.database("deno_auth");\n\n export default db;\n With that out of the way, let's create an interface for your database.
\nIn your schema folder, create a file user.ts, import objectId from deno MongoDB URL, then define and export your schema.
schema.user.ts
import {ObjectId} from "https://deno.land/x/mongo@v0.30.0/mod.ts";\n\nexport interface UserSchema {\n _id: ObjectId;\n username: string;\n password: string;\n }Let's play with some logic: go to your controllers folder, and create a file called users.ts. In the file, import your database and UserSchema.
It's not a good practice to store your password in plain text for security reasons. To has your password, let's import bcrypt from the deno bcrypt URL.
\nSo, create a function called signup that takes username and password. Take the user details from the request body, hash the password, and save them to your database.
controllers.users.ts
import db from "../database/connectBD.ts";\nimport * as bcrypt from "https://deno.land/x/bcrypt/mod.ts";\nimport { UserSchema } from "../schema/user.ts";\n\nconst Users = db.collection<UserSchema>("users");\n\nexport const signup = async({request, response}:{request:any;response:any}) => {\n const {username, password} = await request.body().value;\n const salt = await bcrypt.genSalt(8);\n const hashedPassword = await bcrypt.hash(password, salt);\n\n const _id = await Users.insertOne({\n username,\n password:hashedPassword\n });\n response.status =201;\n response.body = {message: "User created", userId:_id, user:username}\n \n};Now, head over to allRoutes.ts in your routes folder, import the signup function from the controller, and create a POST route for signup, as follows.
routes.allRoutes.ts
import { Router } from "https://deno.land/x/oak/mod.ts";\nimport {signup} from "../controllers/users.ts";\n\nconst router = new Router();\n\n//User routes\nrouter.post("/api/signup", signup)\n\nexport default router;Create Authenticate User route
\nNext, create an authentication route that authenticates your user route. The latest version of Deno does not allow a string as a secret key but accepts a cryptokey generated from a Web Crypto API with the generatekey() method of the SubtleCrypto interface.
So, head over to your utils folder, create a file called apiKey.ts, and in the file, generate your key and export it, as follows.
utils.apiKey.ts
export const key = await crypto.subtle.generateKey(\n { name: "HMAC", hash: "SHA-512" },\n true,\n ["sign", "verify"],\n );Now that you have successfully created your key, you can create a user authentication route so that every user that logs in will get authenticated.
\nHead over to user.ts in your controller, import the API key, create a signin function, and write some validation logic to validate that the user exists in your database. If validation is successful, you create a token to authenticate the user.
Using JWT to Authenticate a User
\nNow, let's import Deno JWT (djwt) create function from the URL to create a token. When a user logs in, take the id and username, pass the payload into the JWT create function, generate a token, and use the token to authenticate the user.
controllers.users.ts
import db from "../database/connectDB.ts";\nimport * as bcrypt from "https://deno.land/x/bcrypt/mod.ts";\nimport { UserSchema } from "../schema/user.ts";\nimport { create } from "https://deno.land/x/djwt@v2.4/mod.ts";\nimport { key } from "../utils/apiKey.ts";\n\nconst Users = db.collection<UserSchema>("users");\n\n //create a user\n export const signup = async({request, response}:{request:any;response:any}) => {\n const {username, password} = await request.body().value;\n const salt = await bcrypt.genSalt(8);\n const hashedPassword = await bcrypt.hash(password, salt);\n\n const _id = await Users.insertOne({\n username,\n password:hashedPassword\n });\n response.status =201;\n response.body = {message: "User created", userId:_id, user:username} \n};\n\n //sign in a user\n export const signin = async ({request, response}:{request:any; response:any}) => {\n\n const body = await request.body();\n const {username, password} = await body.value;\n\n const user = await Users.findOne({username});\n\n if(!user) {\n response.body = 404;\n response.body = {message: `user "${username}" not found`};\n return;\n }\n const confirmPassword = await bcrypt.compare(password, user.password);\n if(!confirmPassword){\n response.body = 404;\n response.body = {message: "Incorrect password"};\n return;\n }\n \n //authenticate a user\n const payload = {\n id: user._id,\n name: username\n };\n const jwt = await create({ alg: "HS512", typ: "JWT" }, { payload }, key);\n\n if(jwt) {\n response.status = 200;\n response.body = {\n userId: user._id,\n username: user.username,\n token: jwt,\n }\n } else {\n response.status = 500;\n response.body = {\n message: "internal server error"\n }\n }\n return;\n }So far, you have progressed well. The next thing is to import your signin function in the routes and create a post request for it, as follows.
routes.allRoutes.ts
import { Router } from "https://deno.land/x/oak/mod.ts";\nimport {signup, signin} from "../controllers/users.ts";\n\nconst router = new Router();\n\n//User routes\nrouter.post("/api/signup", signup)\n .post("/api/signin", signin);\n \n\nexport default router;Congratulations on making it this far! You are through with the authentication route. Now, you can register a user, sign in, and authenticate the user.
\nYou need to create your todo CRUD API and protect the routes so that a random person will not be able to access your route except when authenticated.
\nGo to your schema folder, and create a file task.ts. In the file, create your tasks interface and export it.
Create Todo Route
\nschema.task.ts
export interface TaskSchema {\n name: string;\n isCompleted: boolean;\n } After successfully creating the task interface, move to our controller, create a file tasks.ts, and import the database, schema, and object Id. Then write the logic for our todo CRUD API.
controllers.tasks.ts
import db from "../database/connectDB.ts";\nimport { TaskSchema } from "../schema/task.ts";\nimport {ObjectId} from "https://deno.land/x/mongo@v0.30.0/mod.ts";\n\nconst tasks = db.collection<TaskSchema>("tasks");\n\nexport const create = async({request, response}:{request:any;response:any}) => {\n const {name, isCompleted} = await request.body().value;\n\n const _id = await tasks.insertOne({\n name,\n isCompleted\n });\n response.body = {message: "Task created!!", id:_id, name:name, Completed:isCompleted}\n };\n\n export const getTasks = async ({response}:{response:any}) => {\n const allTasks = await tasks.find({}).toArray();\n\n response.status = 200;\n response.body = {tasks:allTasks};\n };\n\n export const getById = async ({\n params,\n response\n }:{\n params:{taskId:string};\n response:any;\n }) => {\n const taskId = params.taskId;\n const task = await tasks.findOne({_id:new ObjectId(taskId)});\n\n if(!task){\n response.body = {message: `no task with Id: ${taskId}`};\n return;\n}\n response.status = 200;\n response.body = {task: task}\n};\n\nexport const updateById = async ({\n params,\n request,\n response\n}:{\n params:{taskId:string};\n request:any;\n response:any;\n}) => {\n const taskId = params.taskId;\n const {name, isCompleted} = await request.body().value;\n const task = await tasks.updateOne({_id:new ObjectId(taskId)},\n {$set:{name:name, isCompleted:isCompleted}});\n\n response.status = 200;\n response.body = {message:"Updated task", task:task};\n};\n\nexport const deleteTask = async ({\n params,\n response,\n}:{\n params:{taskId:string};\n response:any;\n}) => {\n const taskId = params.taskId;\n const task = await tasks.deleteOne({_id:new ObjectId(taskId)});\n response.status = 200;\n response.body = {message:"Deleted task", task:task};\n};With that out of the way, you need to create your todo CRUD routes. So, head over to allRoutes.ts and import the CRUD functions from the task controllers, then create the routes for our todo, as follows.
routes.allRoutes.ts
import { Router } from "https://deno.land/x/oak/mod.ts";\nimport {signup, signin} from "../controllers/users.ts";\nimport {create, getTasks, getById, updateById, deleteTask} from "../controllers/tasks.ts";\n\nconst router = new Router();\n\n//User routes\nrouter.post("/api/signup", signup)\n .post("/api/signin", signin);\n\n//Task routes\nrouter.post("/api/tasks", create)\n .get("/api/tasks", getTasks)\n .get("/api/tasks/:taskId", getById)\n .patch("/api/tasks/:taskId", updateById)\n .delete("/api/tasks/:taskId", deleteTask);\n\nexport default router;Protect Todo Routes
\nYou need to protect your todo routes so that an unauthorized person will not be able to access them.
\nTo protect the todo routes, go to your middlewares folder: create a file called isAuthorized.ts, import the verify function from deno JWT URL, import Context from deno, import the secret key you've created, and create the authorized function.
The authorize function checks if a user has a JWT token, grant the user access if he does, and deny him access if otherwise.
\nmiddlewares.isAuthorized.ts
import { verify } from "https://deno.land/x/djwt@v2.4/mod.ts";\nimport { key } from "../utils/apiKey.ts";\nimport { Context } from "https://deno.land/x/oak/mod.ts";\n\nexport const authourized = async (ctx: Context, next:any) => {\n try{ \n const headers: Headers = ctx.request.headers;\n const authorization = headers.get('Authorization');\n if(!authorization) {\n ctx.response.status = 401;\n return;\n }\n const jwt = authorization.split(' ')[1];\n\n if(!jwt) {\n ctx.response.status = 401;\n return;\n }\n const payload = await verify(jwt, key);\n\n if(!payload){\n throw new Error("!payload")\n }\n await next();\n \n } catch (error) {\n ctx.response.status = 401;\n ctx.response.body ={message: "You are not authorized to access this route"}\n return;\n }\n};To protect your todo routes, import the authorized middleware function from the isAuthorized.ts middleware file and pass the middleware into the todo routes to protect them from unauthorized people.
routes.allRoutes.ts
import { Router } from "https://deno.land/x/oak/mod.ts";\nimport {signup, signin} from "../controllers/users.ts";\nimport {create, getTasks, getById, updateById, deleteTask} from "../controllers/tasks.ts";\nimport { authourized } from "../middlewares/isAuthorized.ts";\n\nconst router = new Router();\n\n//User routes\nrouter.post("/api/signup", signup)\n .post("/api/signin", signin);\n\n//Task routes\nrouter.post("/api/tasks", authourized, create)\n .get("/api/tasks", authourized, getTasks)\n .get("/api/tasks/:taskId", authourized, getById)\n .patch("/api/tasks/:taskId", authourized, updateById)\n .delete("/api/tasks/:taskId", authourized, deleteTask);\n\nexport default router;Awesome! Your application is ready, but wait! Don't get too excited yet, relax let's test the application :)
\nBelow is what your final project directory looks like:
\nDenoAPI_JWT_Auth
│
\n└─src
\n│ └───controllers
\n│ │ └───users.ts
\n│ │ └───tasks.ts
\n│ │\n│ └───database
\n│ │ └───connectDB.ts
\n│ │
\n│ └───middlewares
\n│ │ └───isAuthorized.ts
\n│ │
\n│ └───routes
\n│ │ └───allRoutes.ts
\n│ │\n│ └───schema
\n│ │ └───user.ts
\n│ │ └───task.ts
\n│ │\n│ └───utils
\n│ │ └───apiKey.ts
\n│ │
\n└─app.ts
Test Application
\nNow that your application is ready, you need to test the various routes to ensure they are working. To test the routes, rerun your server with deno run --allow-net app.ts.
Sign-in Route
\nAmazing! Now that you have signed up and authenticated a user, the returned token, which shows that the user has been authenticated, can be used to access your todo CRUD APIs.
\nAccessing the Todo Routes
\nFirst, let's try accessing your todo routes without the token...
\nCreate Task Route
\nAs you can see, when you tried to create a task, you got a message You are not authorized to access this route because a random person did it without a token.
Now, let's also try accessing the delete by Id route without the token...
\nDelete Task Route
\nYour todo CRUD APIs have been protected, and the only way a user can access them is by getting authenticated. Now let's log in again and use the returned token to access the todo routes.
\nSo, you have logged a user in and put the returned Bearer's token in the authorization header. You can access our todo APIs now because, with the bearer's token, you are authorized to access the todo APIs.
\nCreate Task Route
\nGet All Tasks Route
\nGet Task By Id Route
\nThe code for this tutorial is available here on Github. Feel free to clone and extend the features of the application. Amazon’s sub-par data management story about its retail platform, if anything, is a cautionary tale . The lapses in understanding how and where data is stored had severely affected how information is managed and secured. In turn, it caused security shortfalls and unnecessary privileged access that rogue employees and sellers had exploited. The opinionated notion of thinking of data security and privacy programs as cost centers has to be questioned and rethought. While such programs do not seemingly contribute to the profits generated by an enterprise, the adverse effects on the topline when such programs fail are visible in too many examples, mostly in terms of lost consumer loyalty and revenue growth. Inversely, data privacy and security today are fundamental to building and operating a successful enterprise that is sustainable in the long term. Overall, security and privacy are interdependent. Accordingly, enterprise leaders should support such programs as not something to be performed but a priority to be managed with appropriate investments of capital and resources. An enterprise’s good track record with information security and consumer-focused privacy management can heighten brand value and strengthen market positioning in the current business landscape. Consumers, who have significantly been affected by data breaches, are concerned about what data they share and with whom, as data — either personal or transactional — is ever becoming critical to how consumers live and businesses operate. In this new paradigm, the amount of data is also growing exponentially. This phenomenon is making the data management practices and technologies that was widely used a few years ago ineffective, necessitating enterprises to rethink data management strategies and deploy emerging technologies to prepare for and overcome challenges. All this implies that data management programs have to consider information security and consumer data privacy as fundamental to their success and contribute to an enterprise's topline. But, how can enterprise leaders navigate this paradigm shift? In my short yet insightful eBook on data privacy, enterprise leaders will get in-depth insights and much-needed perspectives on managing data security and privacy. The chapters are as follows: In detail, I have organized the eBook into chapters mentioned above in addition to an Executive Summary intended for senior executives for a brief overview. Identity is evolving, and developers are at the forefront of this transformation. Every day brings a new learning—adapting to new standards and refining approaches to building secure, seamless experiences. We’re here to support developers on that journey. We know how important simplicity, efficiency, and well-structured documentation are when working with identity and access management solutions. That’s why we’ve redesigned the LoginRadius website—to be faster, more intuitive, and developer-first in every way. The goal? Having them spend less time searching and more time building. LoginRadius’ vision is to give developers a product that simplifies identity management so they can focus on building, deploying, and scaling their applications. To enhance this experience, we’ve spent the last few months redesigning our interface— making navigation more intuitive and reassuring that essential resources are easily accessible. Here’s a closer look at what’s new and why it’s important: Developers spend long hours working in dark-themed IDEs and terminals, so we’ve designed the LoginRadius experience to be developer-friendly and align with that preference. The new dark mode reduces eye strain, enhances readability, and provides a seamless transition between a coding environment and our platform. Our new design features a clean, modern aesthetic with a consistent color scheme and Barlow typography, ensuring better readability. High-quality graphics and icons are thoughtfully placed to enhance the content without adding visual clutter. So, whether you’re navigating our API docs or configuring authentication into your system, our improved interface will make those extended development hours more comfortable and efficient. We’ve restructured our website to provide a straightforward breakdown of our customer identity and access management platform capabilities, helping you quickly find what you need: This structured layout ensures you can quickly understand each capability and how it integrates into your identity ecosystem. We’ve been analyzing developer workflows to identify how you access key resources. That’s why we redesigned our navigation with one goal in mind: to reduce clicks and make essential resources readily available. The new LoginRadius structure puts APIs, SDKs, and integration guides right at the menu bar under the Developers dropdown so you can get started faster. Our Products, Solutions, and Customer Services are also clearly categorized, helping development teams quickly find the right tools and make informed decisions. Developers now have a clear view of the tech stack available with LoginRadius, designed to support diverse business needs. Our platform offers pre-built SDKs for Node.js, Python, Java, and more, making CIAM integration seamless across popular programming languages and frameworks. Check out our revamped LoginRadius website and see how the improved experience makes it easier to build, scale, and secure your applications. Do not forget to explore the improved navigation and API documentation, and get started with our free trial today. We’re excited to see what you’ll build with LoginRadius!Introduction
\nPrivacy and Security Programs Are Not Just Cost Centers
\nIn Conclusion
\n\n
\nWhat’s New and Improved on the LoginRadius Website?
\nA Developer-Friendly Dark Theme
\n![\"This](\"/f46881583c7518a93bb24e94c32320de/a-developer-friendly-dark-theme.webp\")
Clear Categorization for LoginRadius Capabilities
\n![\"This](\"/e5358b82be414940f3fb146013845933/capabilities.webp\")
\n
\nDeveloper-First Navigation
\n![\"This](\"/a8c155c2b6faf3d5f4b4de4e2b14d763/developers-menu.webp\")
Quick Understanding of Integration Benefits
\n![\"This](\"/b2f9a964a2da0ea83e2f8596b833bba7/we-support-your-tech-stack.webp\")
Over to You Now!
\n