I'm newbie to authentication, why do I need session variable.
The procedure I'm following to authenticating my users as follows.
-
Once the user is logged in, I will set a encoded cookies to user's browser.
-
For every request from the user, I will Use app.all("*") I will check whether user is logged in (and who the user is?) by comparing user cookies with my database. What's wrong with this procedure and how can I improve?
via V Abinaya
No comments:
Post a Comment