- The most adopted one, is Cookie-Based Authentication (you can find an example here) that uses server side cookies to authenticate the user on every request.
- A newer approach, Token-Based Authentication, relies on a signed token that is sent to the server on each request.
view source
