- When is Basic Authorization used vs. Bearer Authorization?
Basic Authorization is used for integration with reporting tools like PowerBI, Tableau, QLik, BoldBI. Bearer Authorization is used when scripting, when developing external app or when doing integration with external tools.
- What does the JSON Web Token package do?
Defines a compact and self-contained way for securely transmitting information between parties as a JSON object.
- What considerations should we make when creating and storing a SECRET?
Protect additional sensitive information, Monitor your secrets, Improve performance by using client-side caching.
encryption - Encryption is the process of taking plain text, like a text message or email, and scrambling it into an unreadable format — called “cipher text.
token - a token is a single element of a programming language. There are five categories of tokens: 1) constants, 2) identifiers, 3) operators, 4) separators, and 5) reserved words.
bearer - an HTTP authentication scheme that involves security tokens called bearer tokens
secret - Secrets are digital credentials: passwords, APIs, encryption keys, SSH keys, tokens, and so on
JSON Web Token - a compact and self-contained way for securely transmitting information between parties