Intro
API authorization and authentication
Authentication is the process of verifying the identity of a user, while authorization is the process of determining whether a user has access to certain resources or operations.
PyJWT is a Python library that allows us to work with JSON Web Tokens, while cryptography will allow us to verify the tokens’ signatures.
Understanding authentication and authorization protocols
When it comes to API authentication, the two most important protocols you need to know are OAuth (Open Authorization) and OpenID Connect (OIDC).