Sign in


A major component of any modern authentication strategy is the management of a user’s devices. With different forms of stateless authorization allowing accessibility from browser and native clients simultaneously, knowing which device is accessing a resource can be critical for application functionality and the user’s security.

In this article, we will discuss one possible authentication strategy and then demonstrate how it can be implemented with a NodeJS REST API.

Authentication Strategy

We will be discussing the use of refreshable JWT’s to maintain authentication across multiple devices. There are two types of tokens discussed in this example: a short-lived access token (JWT) and…

Andrew Perera

Self-taught developer from Charleston, SC. Computer Science and Business student at the University of South Carolina.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store