Links útiles

Dejo a continuación algunos enlaces útiles que se mencionan en la guía:

Repositorio de la aplicación

• https://www.github.com/fedeholc/jwtlk

Enlaces a herramientas y librerías utilizadas

• Dotenv: https://github.com/motdotla/dotenv
• Express: https://expressjs.com/
• Jose: https://github.com/panva/jose
• Joi: https://joi.dev/
• JSDoc: https://jsdoc.app/
• Node: https://nodejs.org/
• Nodemailer: https://nodemailer.com/
• Playwright: https://playwright.dev/docs/intro
• Supertest: https://github.com/ladjs/supertest
• SQLite: https://www.sqlite.org/index.html
• Turso: https://turso.tech/app
• Vitest: https://vitest.dev/guide/

Extensión para traducir comentarios en VSCode

• https://marketplace.visualstudio.com/items?itemName=intellsmi.comment-translate

Información sobre JWT

• https://jwt.io/introduction/

Información sobre OAuth2

• https://auth0.com/docs/get-started/authentication-and-authorization-flow/authorization-code-flow
• https://developers.google.com/identity/protocols/oauth2/javascript-implicit-flow
• https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/authorizing-oauth-apps#web-application-flow

Información sobre Content Security Policy (CSP)

• https://web.dev/articles/csp
• https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
• https://developer.mozilla.org/en-US/docs/Web/Security/Practical_implementation_guides/CSP
• https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html

Información sobre Cross-Site Request Forgery(CSRF)

• https://portswigger.net/web-security/csrf
• https://owasp.org/www-community/attacks/csrf
• https://developer.mozilla.org/en-US/docs/Web/Security/Practical_implementation_guides/CSRF_prevention