This week I started recording youtube videos explaining some of the internals of Laravel.
First, I started with explaining how session authentication works in Laravel. I went into explaining how cookies work and how Laravel uses them to store the session ID and retrieve it to authenticate users.
Then I went into explaining how Laravel protects you against CSRF. But before that, I shared an example of how CSRF can be dangerous.
I also shared a bit of history on browsers before CORS, why CORS was introduced, and how Laravel helps you configure it.
And finally I discussed the main differences between session-based and token-based authentication.