In this episode, James and Amy, explain all the buzz words: authentication, authorization, JWTs, sessions, and cookies. And what's the best implementation for your site?SponsorsVercelVercel combines the best developer experience with an obsessive focus on end-user performance. Their platform enables frontend teams to do their best work. It is the best place to deploy any frontend app. Start by deploying with zero configuration to their global edge network. Scale dynamically to millions of pages without breaking a sweat.For more information, visit Vercel.comZEAL is hiring!ZEAL is a computer software agency that delivers “the world’s most zealous” and custom solutions. The company plans and develops web and mobile applications that consistently help clients draw in customers, foster engagement, scale technologies, and ensure delivery.ZEAL believes that a business is “only as strong as” its team and cares about culture, values, a transparent process, leveling up, giving back, and providing excellent equipment. The company has staffers distributed throughout the United States, and as it continues to grow, ZEAL looks for collaborative, object-oriented, and organized individuals to apply for open roles.For more information visit softwareresidency.com/careersDatoCMSDatoCMS is a complete and performant headless CMS built to offer the best developer experience and user-friendliness in the market. It features a rich, CDN-powered GraphQL API (with realtime updates!), a super-flexible way to handle dynamic layouts and structured content, and best-in-class image/video support, with progressive/LQIP image loading out-of-the-box."For more information, visit datocms.comShow Notes0:00 Introduction4:30 Unpopular Opinions and  Parenting Tips8:55 All the Buzzwords10:38 What would you do if you were to build authentication and authorization into your own site?12:08 Authentication VS Authorization15:57 Sponsor: DatoCMS16:51 Roles and Permissions20:18 Cookies and Sessions25:45 Facebook Tracking27:04 The Relationship Between Sessions and Cookies29:28 Sponsor: ZEAL30:21 JWTs, JSON, and Web Tokens35:35 Combining JWTs with Cookies36:45 Beware: Cross Side Scripting38:53 Refresh Tokens41:22 Identity / SaaS Platforms for to Handle AuthenticationAuth0OktaNext AuthSupabaseFirebase46:32 Sponsor:  Vercel47:40 Grab Bag Questions48:06 Question #1: Is it JWT or JOT?50:31 Question #2: Rolling your own Auth System vs. Using a ServiceJames Perkins - Live EpisodeClerk.dev51:19 Question #3: What is your favorite Girl Scout Cookie?52:33 Picks and Plugs52:46 Amy's Pick: CodeSpark54:18 Amy's Plug: Everything Svelte54:57 James's Pick: Publix Sub Sandwich56:28 James's Plug: Learn Build Teach Discord