The Copenhagen Book: general guideline on implementing auth in web applications