-
Mobile users should not have to log in as much as they have to. Check & follow best practices for authentication
-
### What happened?
I created an Okta Application (Pulumi OAuth resource) with a "refresh_token" grant type, specifing both the RefreshTokenRotation and RefreshTokenLeeway. Now, I want to update the…
-
The [IETF Best Current Practice (BCP)](https://tools.ietf.org/html/draft-ietf-oauth-browser-based-apps-07) draft recommends using Authorization Code flow with PKCE for Single-Page-Applications (SPA).…
-
This will likely be left pending at delivery, since Datatracker doesn’t seem to be offering a token refresh endpoint.
Current behavior is to avoid verifying token on each page load to save time, so…
-
**Describe the bug**
I need to maintain a Custom LocalStorage and followed the description here: https://pub.dev/documentation/supabase_flutter/latest/#a-idcustom-localstorageacustom-localstorage
…
-
Hello mates,
I was wondering why refresh tokens are stored clear on the database. Refresh tokens should be considered as sensitive as passwords as they can lead to full accounts compromise, and we …
-
My back-end is Laravel framwork with jwt-auth and front-end is mobile application with React Native.
When I call to API (back-end), I must refresh token every time or not?
If I refresh a token when …
-
## Issue
Right now I notice that you apply the refresh token logic at each time the application becomes active. I am curious on why you choose to implement the logic like this approach? And how wou…
-
I'm able to use ```token
-
Hey
Just a quick note. I've just got back to this from some time off so I might have missed something. I've updated to the version 2.4.0.
In my controller, when I find a user by the req.user.id obj…