Week 5 — Authentication & Authorization

Apr 28 – May 2

What We're Covering

Auth concepts on Day 1 — passwords, hashing, JWT tokens, and why security matters. Day 2 is the auth-squared deep dive — building a real authentication system from a template.

Readings

• Authentication & Authorization

Due This Week

Quiz 5 — Due: Sunday, May 3 at 11:59 PM

Canvas · Site

Covers: Authentication & Authorization

Check-Off: Auth-Squared — Due: Sunday, May 3 at 11:59 PM

Canvas · Site

Implement validation, JWT auth, and admin RBAC from the auth-squared template.

Sprint 3 — Due: Sunday, May 3 at 11:59 PM

Canvas · Site

Full route coverage, RBAC, OpenAPI complete, combined/enriched endpoints.

What You Should Be Working On

• Sprint 3 — finish your back-end route coverage, add RBAC, complete OpenAPI docs.
• Auth-Squared check-off — individual work building authentication from the template.
• Review the validation guide — Error Handling & Validation covers patterns you'll need for Sprint 3.
• Read the Week 5 reading and take Quiz 5.
• AI Diary — log your Week 5 entry.

---

Learning Objectives & Course Outcomes

Syllabus Learning Objectives addressed this week:

• LO1: Design and implement RESTful web APIs using a server-side framework
• LO3: Implement authentication and authorization using token-based and federated identity patterns
• LO7: Collaborate in teams using version control workflows, sprint milestones, and code review

Course Outcomes:

• Inquiry and Critical Thinking — modes of inquiry, analysis, and critical synthesis

---

Lecture Recaps

• Tuesday — Coming soon
• Thursday — Coming soon