My Auth. Lab My Authentication Lab

Welcome

About

This is the home page of the Authentication Lab. It gives an overview of the project and links to the authentication features.

Navigation options are updated automatically based on the user's authentication status. Create Account and Login are available to logged-out users, while authenticated users can access their profile (user information) and log out.

  • Protected user data is retrieved from a secured API endpoint and requires a valid JWT token.
  • User passwords are securely hashed with bcrypt before being stored in the SQLite database.
  • JWT tokens are signed using a securely generated secret key. Stored in an environment variable, the secret key is never exposed in the codebase.
  • The page uses simple navigation and semantic HTML for better accessibility.

Secure authentication

Illustration of secure user authentication and access control
AIGENERATED
Figure 1. JWT protected accounts.