Laravel Sanctum provides a featherweight authentication system for SPAs (single page applications), mobile applications, and simple, token based APIs. Sanctum allows each user of your application to generate multiple API tokens for their account. These tokens may be granted abilities / scopes which specify which actions the tokens are allowed to perform. How It Works …
Prevent from Brute-force attack In Laravel 7, Illuminate\Foundation\Auth\ThrottlesLogins is already there in LoginController which is used to prevent brute-force attack. Route::post(‘login’, ‘Auth\LoginController@postLogin’)->middleware(“throttle: maxAttempts, decayMinutes“); Prevent from going back in browser history after login/logout After logout, users should not be able to go back to the previous page by using browser’s “back” button. We need to add …
FingerprintJS Pro is a combination of a JavaScript agent that runs in the browser and a server-side storage and API system that securely identifies visitors and stores all the information you need to detect fraud. Business scenarios where FingerprintJS Pro can help Catch bots trying to automatically input many usernames and passwords into your login …
Tokenization is the process of turning sensitive data into nonsensitive data called “tokens” that can be used in a database or internal system without bringing it into scope. Tokenex is a enterprise grade service to tokenize any data including credit card numbers, identification numbers of customers.
SSH is a widely used protocol for system administration and file transfer. In addition, it has a feature called SSH tunnelling¬† (or SSH port forwarding). It creates an encrypted connection between a local computer and a remote computer through which you can relay traffic. It is very useful, and you can use it to securely …
Tampermonkey is the most popular userscript manager, with over 10 million users. It’s available for Chrome, Microsoft Edge, Safari, Opera Next, and Firefox. Tampermonkey makes it very easy to manage your userscripts and provides features like a clear overview over the running scripts, a built-in editor, ZIP-based import and export, automatic update checks and browser and cloud storage based synchronization. We can …
Sometimes we need to add a special form to input the security code using individual input fields. The security code form on Linkedin is one of the example. We can use the following library when we need to implement it in Vue.js projects. https://github.com/ofcold/security-code
Cross-Origin Resource Sharing (CORS) is a mechanism that uses additional HTTP headers to tell a browser to let a web application running at one origin (domain) have permission to access selected resources from a server at a different origin. A web application executes a cross-origin HTTP request when it requests a resource that has a different origin (domain, protocol, and …
The complete toolkit for customer onboarding and KYC & AML compliance All-in-one platform to onboard and verify your customers. Whether you are creating an e-wallet, an ICO or carsharing service, we will make it easy for users to get started with you. Reliable know Your Customer (KYC) and Anti-money laundering (AML) procedures, personal data handled the …
Cross-Origin Read Blocking (CORB) is an algorithm that can identify and block dubious cross-origin resource loads in web browsers before they reach the web page. CORB reduces the risk of leaking sensitive data by keeping it further from cross-origin web pages. In most browsers, it keeps such data out of untrusted script execution contexts. In …