AlgoDaily - Cookie vs. Token Authentication

Systems Design and Architecture 🔥

Back to course sections

Fundamentals of Systems Design

A Systems Design Interview Primer For New Engineers

How to Ace Systems Design Interviews: Tips and Strategies

From Byte to Gigabyte to Petabyte: Understanding Data Size

Introduction to Computer Networking and Protocols

REST, RPC, and Distributed API Design

Metrics: Latency, CPU, Memory, Error Rates

Monoliths vs. Microservices for Junior Engineers

Microservices Interview Questions

What is Caching? An Introduction to Strategies

Cookie vs. Token Authentication

Feature: Software Architectural Patterns & Design Structures

What is a Load Balancer? An Introduction

What is MapReduce and How Does It Work?

Potential Bottlenecks in Software Performance Testing

Pub-Sub and Event Driven Architecture (EDA)

What Is Cloud Computing? What to Know In Interviews

How do Routers, Switches, and Hubs work?

What is a Proxy Server?

Best Cloud Platforms for Software Development

Cloud Computing Pricing Analysis and Comparisons

Mark As Completed Discussion

Home > Systems Design and Architecture 🔥 > Fundamentals of Systems Design > Cookie vs. Token Authentication

There are a few significant advantages to using token-based authentication:

Stateless, Scalable, and Decoupled: each token is self-contained, containing all the data required to check its validity
You can store additional data in the token itself - for example, roles, access privileges, and other data, as long as it is valid JSON data
Mobile ready - tokens are easy to implement in mobile and IoT applications
Easy to maintain
A token-based authentication approach with CORS enabled makes it easy to expose APIs to different services and domains

When it comes to disadvantages however, these are the ones to consider:

JWT tokens can be large in size
If the token is placed in the browser's local storage it can be prone to XSS attacks
Tokens cannot be used to authenticate a user in the background on the server since no session exists on the database level

Programming Categories

Basic Arrays Interview Questions

Binary Search Trees Interview Questions

Dynamic Programming Interview Questions

Easy Strings Interview Questions

Frontend Interview Questions

Graphs Interview Questions

Hard Arrays Interview Questions

Hard Strings Interview Questions

Hash Maps Interview Questions

Linked Lists Interview Questions

Medium Arrays Interview Questions

Queues Interview Questions

Recursion Interview Questions

Sorting Interview Questions

Stacks Interview Questions

Systems Design Interview Questions

Trees Interview Questions

Popular Lessons

All Courses, Lessons, and Challenges

Data Structures Cheat Sheet

Free Coding Videos

Bit Manipulation Interview Questions

Javascript Interview Questions

Python Interview Questions

Java Interview Questions

SQL Interview Questions

QA and Testing Interview Questions

Data Engineering Interview Questions

Data Science Interview Questions

Blockchain Interview Questions

Introduction to C++

Recursion and Backtracking

What are Strings and String Operations?

Elasticsearch at Netflix