Session vs Cookie/Token based authentication

TL;DR Session based authentication could be more secure but Token based authentication is faster and much easier to implement in mobile application. And You can implement Web-Farm with Token based easier than using Session. Session based authentication vs Token based authentication The introduction: You know that, HTTP is stateless protocol. Each request as an independent … Continue reading Session vs Cookie/Token based authentication

In 2017, Chrome marks HTTP pages as non-secure

According to Google Security Blog, Beginning in January 2017 (Chrome 56), we’ll mark HTTP pages that collect passwords or credit cards as non-secure, as part of a long-term plan to mark all HTTP sites as non-secure. So, Since January 2017 If your HTTP pages contain password/credit card field, Chrome will marks them as  non-secured. This is … Continue reading In 2017, Chrome marks HTTP pages as non-secure