api design

What's the difference between Authentication and Authorization?

May 2, 2021 · 1 min read
Don't use the word "auth". Unless everyone knows what you're referring to. There's authentication and then there's authorization. Let's look at the definitions of both and what to do instead of "auth".

A Simple Approach To Fullstack Error Handling

April 11, 2021 · 4 min read
Generic error messages suck. As a user, we encounter them all the time. “An error occurred, please try again later“. Often just to find out the problem wasn't some server outage, but something on our side. A typo in our email - and the server couldn't send that verification email, resulting in a 500 internal server error. Here's a simple but effective way to API error design.