-
I am trying to add two different Authorization bearer tokens across the application (i.e. internalBearerAuth and externalBearerAuth in the securitySchemes :
```
> securitySchemes:
> externa…
-
**Which version of Microsoft.IdentityModel are you using?**
Note that to get help, you need to run the latest version.
**Where is the issue?**
* [X] M.IM.JsonWebTokens
* [ ] M.IM.KeyVaultEx…
-
https://stormpath.com/blog/where-to-store-your-jwts-cookies-vs-html5-web-storage
http://www.vinaysahni.com/best-practices-for-a-pragmatic-restful-api
https://ocramius.github.io/blog/doctrine-orm-opt…
-
I am using JWT tokens to authorize access to the API. I'm also adding an expiration to the tokens which works, but the response when trying to access an endpoint with an expired token is always
`"…
-
### Description:
I have created a custom token generator as described here https://apim.docs.wso2.com/en/latest/deploy-and-publish/deploy-on-gateway/api-gateway/passing-enduser-attributes-to-the-back…
-
**Describe the bug**
When using the jwt authenticator with trusted issuers specified, the issuer isn't always read verbatim. As a consequence, valid tokens are failed.
**Reproducing the bug**
…
-
Hi,
I would like to add support for encrypted JWT tokens (JWE). Having looked through the code base, I am not quite sure where to start. Would an new TokenStore be the way to go or is a TokenConverte…
-
Edit: previous title: SECURITY: JWT aud field not checked!!!
It's also not set at all during token creation...
It should be set to `did:web:{PDS_SERVER}`
This means that other tokens, such as…
-
Hi,
I tried using the `ipsw appstore profile ls` command line tool, but on various different workstations I get the expected output, while on a specific one I always get the same error:
```
…
-
Hello!
Does djoser support user logout when using JWT?
What is the proper way to logout with JWT?