-
Refresh tokens fail to be accepted by wyze servers after about 1-hour and 45 minutes. See the discussion in attached projects/forum for more details.
https://github.com/SecKatie/ha-wyzeapi/issues/…
-
It used to be that it never mattered whether or not the bot tokens expired. As the RERUM API code has shifted and evolved, this affordance has dissolved. As such, every increment (3 mos? 6mos? 12m…
-
### Describe the bug
Hey there. I'm launching a Craft Cloud site tomorrow and getting past some final QA bugs.
Looks like https://PROJECT-NAME-production-5cd1c590.preview.craft.cloud/actions/formi…
-
Implement refresh tokens in the api.
-
`get_token()` will only be called once when the app starts. What's the best way to periodically refresh tokens?
I see a line that suggests writing a django middleware. Is there an example available? …
-
The blog post https://www.danvega.dev/blog/2022/09/06/spring-security-jwt, say the following when
> When you reach the point where the trade-offs for self-signed JWTs are not acceptable. An exampl…
-
Is your feature request related to a problem? Please describe.
i want to add access token and Refresh token because I'm was very frusted when web/app tell me login again and again
Describe the so…
-
### Description
Implement Refresh and Access Tokens mechanism to improve security and user experience.
Create logic for token generation, validation (middleware), and renewal of Access Token usin…
-
## Acceptance Criteria [WIP]
### Refresh Token
1. Refresh Token Issuance
* Given a valid login, when the user successfully logs in, then the system should generate and return both an access…
-
Currently refresh tokens are not deleted from the database. We could use a background service to remove records when the stored expiration has been reached.