Authentication is something hard but mandatory. It's the process by which an application confirms user identity, and your API security is depending on it. What are today, the available choices for you? This talk approaches modern methods to ensure scalable, stateless, distributed authentication. Forget simple HTTP basic-auth authentication process and embrace OAuth, JWT, and advanced tokens management.