Closed aelmanaa closed 3 years ago
Hello,
I've got a quick question. Can we validate the access-token if it is received in a custom http header like "x-access-token" rather than standard "Authorization: Bearer " . If yes, how?
thanks
@aelmanaa The only place we can validate the access token today is the authorization header or the body of the request for the BearerStrategy.
Hello,
I've got a quick question. Can we validate the access-token if it is received in a custom http header like "x-access-token" rather than standard "Authorization: Bearer" . If yes, how?
thanks