hectoday
DocsCoursesChangelog GitHub
DocsCoursesChangelog GitHub

Access Required

Enter your access code to view courses.

Invalid code

← All courses

Authentication with @hectoday/http

Learn how authentication works from scratch. Passwords, sessions, cookies, JWTs, and authorization — built with plain functions on Hectoday HTTP and Node.js.

Beginner ~6 hours

What Is Authentication?

  1. Who Are You?
  2. HTTP Is Stateless
  3. Project Setup

Passwords

  1. Why Not Store Passwords Directly
  2. Hashing with bcrypt
  3. Building a Signup Route
  4. Building a Login Route

Sessions and Cookies

  1. What Is a Cookie?
  2. What Is a Session?
  3. Building Session Management
  4. Protecting Routes
  5. Logout
  6. Cookie Security

Tokens

  1. What Is a Token?
  2. Anatomy of a JWT
  3. Creating JWTs
  4. Verifying JWTs
  5. Sessions vs. Tokens

Putting It Together

  1. Authorization
  2. Common Mistakes
  3. Capstone: User Management API

© 2026 hectoday. All rights reserved.