RESTful API-based web and mobile applications are cross-platform and can be accessed from anyplace or anytime resulting in a smoother and easier user experience. This ecosystem creates a familiar environment for business applications, especially for small businesses. However, an increasing number of such applications creates opportunities to protect passwords from various attacks. Humans choose weak textual passwords due to easiness, which may lead to the most frangible connections in the chain of authentication. The graphical password offers a better approach of authentication for web and mobile applications in the emerging business world since it uses images as input instead of alphanumeric. It also makes it difficult for the attackers to crack. This study devises a system that allows the user or client application to authenticate by tapping the right cues over a series of images that the user selects while registering in the system. The system is implemented as a web service using JavaScript technology by ReactJS on client applications and NodeJS on server end.