치즈돈까스와 함께 하는 평생 공부 치즈돈까스와 함께 하는 평생 공부

*복습 자료라서 뻔한 내용은 생략 Summary. 1. In web applications, you try to decide when to use either JSON Web Tokens (JWTs) or sessions (cookies) for authentication. When you browse the web you use HTTP, which is a stateless protocol. So, the only way to remember the states of your application is using either sessions or tokens Additional. 1. JWT 같은 credential은 cookie에 저장해둬야 안전 2. (다음에) JWT 구조 및 사용법 공부 (cli..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. OAuth ("Open Authorization"[1][2]) is an open standard for access delegation, commonly used as a way for internet users to grant websites or applications access to their information on other websites but without giving them the passwords 2. OpenID Connect (OIDC)는 OAuth 2.0 위에서 돌아가는 Authentication Protocol (Oauth는 Authorization 프로토콜) Additional. 1. (다음에) JWT 토큰 공부하기..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. Domain Name을 IP Address로 변환시켜주는 Database 시스템 + 같은 도메인이어도 다른 서버의 ip가 할당됨 (Load Balancing) + Cache에 저장해두기 때문에 Cache Poisoning 위험 2. 동작 순서 (ex: yahoo.com) + 브라우저 캐시에서 찾기 + ISP 서버 (Resolver 서버)로 query 전송 + Resolver 서버는 Cache를 확인한 뒤, Root Server로 query 전송 + Root Server 은 해당 Domain Name의 IP Address를 알고있는 TLD (top-level domian) 서버의 주소를 알려줌 (.com, .net, 등) + TLD 서버는 다시 Aut..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. A Secure context is a Window or Worker for which certain minimum standards of authentication and confidentiality are met. Many Web APIs and features are accessible only in a secure context. The primary goal of secure contexts is to prevent MITM attackers from accessing powerful APIs that could further compromise the victim of an attack 2. Pages can use feature dete..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. An HTTP range request asks the server to send only a portion of an HTTP message back to a client. Range requests are useful for clients like media players that support random access, data tools that know they need only part of a large file, and download managers that let the user pause and resume the download + If an HTTP response includes the Accept-Ranges header ..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. In practice, web developers don't need to implement compression mechanisms, both browsers and servers have it implemented already, but they have to be sure that the server is configured adequately. Compression happens at three different levels first some file formats are compressed with specific optimized methods, then general encryption can happen at the HTTP leve..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. URL redirection, also known as URL forwarding, is a technique to give more than one URL address to a page, a form, or a whole Web site/application. HTTP has a special kind of response, called a HTTP redirect, for this operation Temporary redirects during site maintenance or downtime Permanent redirects to preserve existing links/bookmarks after changing the site's ..

*복습 자료라서 뻔한 내용은 생략 Summary. 1. The HTTP cache stores a response associated with a request, and reuses the stored response for subsequent request + There are several advantages to reusability. First, since there is no need to deliver the request to the origin server, then the closer the client and cache are, the faster the response will be. The most-typical example is when the browser itself stor..