https://peach.ebu.io/technical/tutorials/tuto-oauth2-client/
https://www.pveller.com/oauth2-with-passport-10-steps-recipe/
http://www.hitotec.com/authentification-oauth-avec-passportjs-pour-une-api-rest/
https://www.shangyang.me/2018/03/11/javascript-nodejs-passport-04-deepinto-oauth2-authenticate-process/
https://blog.yorkxin.org/2013/09/30/oauth2-4-1-auth-code-grant-flow.html
https://www.ory.sh/docs/hydra/integration#interacting-with-oauth-20
https://github.com/lelylan/simple-oauth2
https://www.jianshu.com/p/5cf2b7a45b75
https://gitissue.com/repos/jiayisheji/blog
pass csrf https://github.com/expressjs/csurf/issues/21
main.ts import { NestFactory } from '@nestjs/core'; import { NestExpressApplication } from '@nestjs/platform-express'; import { join } from 'path' import { AppModule } from './app.module'; import * as cookieSession from 'cookie-session'; import * as helmet from 'helmet'; import * as cookieParser from 'cookie-parser'; import * as csurf from 'csurf'; import * as rateLimit from 'express-rate-limit'; async function bootstrap() { const app = await NestFactory.create( AppModule, ); app.
https://gitissue.com/repos/jiayisheji/blog
這網站中的 让我们用Nestjs来重写一个CNode(上、中、下) 幫了大忙,減少大量的浪費時間
===========
html -> jade/pug
http://html2jade.aaron-powell.com/
when you html meta want to become jade/pug
layout.pug
meta(content= csrfToken, name='csrf-token')
https://expressjs.com/en/advanced/best-practice-security.html
https://docs.etherniti.org/architecture/benchmarks/performance_test/
https://adon988.logdown.com/posts/7831077-the-corresponding-way-of-node-operation-in-the-formal-environment
在這裡要探討關於 node 到底適不適合在正式環境運行,在一開場首先說明我"過去"對於這個問題的看法,答案是:不適合。