menu

Recent questions tagged jwt

1 vote
1 answer
How to properly create a JWT in python (python dict acts as a secret)? I'm trying to write a bot for some exchanger site. The exchange provides a key of the following kind: {"kty":"EC", "alg":"ES256", "crv":"P-256", "x": ...
by gkgkai666
asked Sep 23, 2021
1 vote
1 answer
Why doesn't 'include' help? Hello! Here is the authorization function on the server: const doLogin = () => { setLoading(true); const request = fetch(baseURL+'/users/authenticat ...
by Crockosha
asked Sep 22, 2021
3 votes
1 answer
How to work correctly with JWT? Usually, after the user has logged in, the received token is written to cookies / localstorage and on further requests the token is pulled from the same place, its valid ...
by eugenedrvnk
asked Sep 19, 2021
1 vote
1 answer
How do I set up gin-jwt in golang? I can't figure out gin-jwt in any way, trying to rewrite an example from a hub, only logging into an existing account, how to implement it all correctly? Ideally with an ...
by JkLKot
asked Mar 29, 2021
1 vote
1 answer
image
What is the name of the token in Federated Identity? There is an ACCESS token to access the resource. There is a REFRESH token to update the ACCESS token. And then there is a proprietary authorization service that gives yo ...
1 vote
1 answer
Is it correct to send any token by Authorization header? I.e. the Auhtorization header is not just for authorization tokens, but for any? ...
by Ibishka
asked Mar 25, 2021
1 vote
2 answers
How do I work correctly with a JWT refresh token? Good day, gentlemen. Please help, I can't figure out how JWT refresh tokens work. What I understand at this point: 1 - the user logs in, in exchange for his login-passwo ...
1 vote
2 answers
Where do I store my React js + Rest api php tokens? I split the project into 2 separate projects Spa store in react js and back in php (rest api). For authorization etc I use 2 tokens jwt and resfresh token. Refresh can b ...
by Ibishka
asked Mar 24, 2021
1 vote
1 answer
How do I create a refresh token? React js SPA project is divided into 2 projects front and back. I use JWT and logically need refresh token. Refresh should be a one time thing, how to create JWT is also ...
by Ibishka
asked Mar 24, 2021
1 vote
1 answer
How do I limit JWT to 24 hours? The point is that I do not understand how to limit. Add to payload exp and iat, but what is responsible for what value should and when validating on token expiry how to ...
by Ibishka
asked Mar 24, 2021
2 votes
3 answers
What secret key to use in JWT? Yes they say to use one key e.g. qwerty for all users but the problem is that if so, if an attacker recognizes qwerty he will take over all user accounts should not the ...
by Ibishka
asked Mar 23, 2021
1 vote
1 answer
How to organize storage of user data in a microservice architecture with OAuth & JWT? Given: Microservice architecture, services interact with each other through queues There is a separate service for authentication based on identityserver The services ...
1 vote
1 answer
How do I decipher the JWT token? Here's an example on eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV ...
by Galdar
asked Mar 21, 2021
1 vote
1 answer
DRF Simple JWT. How do I add access and refresh token EXPIRE TIME to the response data? DRF Simple JWT. How do I add access and refresh token EXPIRE TIME to the response data? from rest_framework_simplejwt.views import ( TokenObtainPairView, TokenRefr ...
1 vote
1 answer
How do I make a ban on user authorization if the user is already logged in - JWT in Laravel 7? Hello! I really need help... Here's the problem: there is a project on Laravel 7 with authorization through JWT. You need to check if the user is already in the system b ...
by wergbitsky
asked Mar 6, 2021
2 votes
1 answer
Access refresh token on microservice? Hi all, I am interested in the answer to the question: If the microservice fails the service responsible for access refresh token, what to do if the service fails, and h ...
by fertyga098
asked Feb 28, 2021
11 votes
3 answers
Secure data exchange between the mobile app and the backend? 1) How does a mob application typically exchange data with the backend to avoid request emulation? 2) If you send sha256(data_request+salt) along with the request, i.e. ...
1 vote
1 answer
Checking the token in the react? Is it necessary and how can I check if the token is still valid, if the pages are not refreshed, but I just navigate through them? For example during normal page refresh ...
by SONDERION
asked Feb 23, 2021
2 votes
1 answer
How to do the Authentication process correctly in Django? Good day to you all. In the process of writing an API (Django restframework) to work with the application a question arose. I use rest_framework.authtoken to create a ...
by 9550668
asked Feb 22, 2021
2 votes
1 answer
How do I register in drf without jwt? Hello all, I am using jwt in my project. I made a view that creates a user. The problem is that when I send a request through postman with the wrong token, I get an erro ...
by Ximiz
asked Feb 22, 2021