How to use JSON Web Tokens for compact and URL-safe security tokens

How to leverage API Keys to mitigate the risk of resource overuse and denial-of-service attacks, and to easily rate-limit requests and revoke access on a per-client basis.

Strategies for protecting sensitive information in your application's HTTP requests