Securing REST APIs with Token-based Auth

Image by Diego Velázquez from Pixabay

Auth is a service layer that does authentication to identify if the user is who they claim to be and does authorization to check if the user has permission to access the specified REST API. The most common form of authentication is using a username and password, but it is cumbersome and a security issue to have embedded in an app or script. More commonly used form of authentication is using tokens that represent the…