If youre building a web API, chances are youll need to authenticate users and let them access their data from other apps. There are many ways to do this, but the most secure is using OAuth2 with OpenID Connect. This lets your app use a third-party identity provider like Google or Facebook to verify that someone is who they say they are and then give them access to private information in your app without having to ask for their password every time
https://t.co/7olR1IeAvO