Closed ecumene closed 3 years ago
jwt stored in local storage for simplicity, however stored in a cookie would be optimal for production build. userID contained in jwt can be decoded at endpoints to query API. jwt included in all API request headers, where authorization mddleware checks validity.
To do this: