Passport.js

Passport is authentication middleware for Node.js. Extremely flexible and modular, Passport can be unobtrusively dropped in to any Express-based web application. A comprehensive set of strategies support authentication using a username and password, Facebook, Twitter, and more - passportjs.org

Documentation

Cookies vs Tokens. Getting auth right with Angular.JS

Token-based Authentication with Socket.IO

10 Things You Should Know about Tokens

Express, Passport and JSON Web Token (jwt) Authentication for Beginners - JonathanMH

Node.js Authentication using Passport.js | @RisingStack

JSON Web Token (JWT, pronounced jot) is a relatively new token format used in space-constrained environments such as HTTP Authorization headers. JWT is architected as a method for transferring security claims based between parties. It is and open standard (RFC 7519).