Keeping track of the currently logged in user is a challenge - as HTTP is, by definition 'stateless'. Hidden form fields, url rewriting and cookies are three common techniques for implementing sessions.

Explore how we need to refactor the application to support sessions

New forms needed to enable the user to signup / login

The API to create, access and destroy sessions.

Introduce Sessions onto the Playlist application, enabling user accounts and cookie-based authentication.

Session and Account management introduced