Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

JSON Web Token #8

Open
wlkns opened this issue Oct 23, 2015 · 2 comments
Open

JSON Web Token #8

wlkns opened this issue Oct 23, 2015 · 2 comments

Comments

@wlkns
Copy link

wlkns commented Oct 23, 2015

Isn't the idea to sign the web token dynamically and not store it in the database?
@simdm
Copy link

simdm commented Nov 12, 2015

update mongoose

@cryptoPickle
Copy link

jwt generally used for as you mentioned, however i could not figure how to invalid the token when user logged out, due to that reason , i am storing the token on database, when user performs logout, token would remove from database. Like this way it is making a naive invalidation for the token, and user can't login with the token invalidated before.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@simdm @wlkns @cryptoPickle