An overview of Token Based Authentication for single page applications: JWTs, session cookies, and angularjs authentication strategies
Source: Token Based Authentication for Single Page Apps (SPAs) – Stormpath User Identity API
See also: http://madhatted.com/2014/6/17/authentication-for-single-page-apps
http://www.jamesward.com/2013/05/13/securing-single-page-apps-and-rest-services
http://brewhouse.io/blog/2014/12/09/authentication-made-simple-in-single-page-angularjs-applications.html (Angular)
http://security.stackexchange.com/questions/67343/secure-rest-api-and-single-page-app-by-using-external-oauth-2-authorization-code
http://programmers.stackexchange.com/questions/194859/security-in-authentication-in-single-page-apps