With a database session token system I could have a user login with a username/password, the server could generate a token (a uuid for example) and store it in the database
