Managing User Sessions in Express
In previous chapters, all of our APIs have placed no authentication requirements on the caller, nor made any attempt to link one request with any previous request. For users to have their own book bundles, we need some identifying token that persists between requests. This is a session.
Sessions are most typically implemented by giving each new user a cookie with an ID that links to some backing session data. Subsequent requests made by the userâs browser (also called a user agent) will include the cookie value, allowing the server to update the userâs session information.
In Express, this is all implemented with middleware. Youâll need the express-session and session-file-store modules. Install those ...
Get Node.js 8 the Right Way now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
