✍️ Notes

The REST APIs Guide

JWT Session Management Express

JWT Claim Descriptions

Session Management Cheat Sheet

It feels great to get up early. It also feels great to stay up late at night on my computer. Alas I can't have both.

The CORS specification is a double-opt-in system where both the client and the server have to opt in (the client by sending the origin header and the server by using something like this, express cors, module). CORS is an abbreviation of "cross-origin resource sharing" -- for the server to tell the client it's OK to share something that the client otherwise wouldn't. CORS is not a server-side security mechanism, as it 100% relies on data sent by the client and assist the security system in the client.

Free SSL certificates

Always remember to add a UUID pk to your Django custom user before creating migrations, or you'll end up spending an hour fighting migrations. However if you do end up forgetting that then do docker-compose down -v to delete all volumes, including your database.