pass the JWT in the HTTP header to /verify - Githubissues

SCE-Development / Clark

Made entirely by SJSU students, this is the Software and Computer Engineering Society's outward face on the internet.

https://sce.sjsu.edu

MIT License

28 stars 11 forks source link

pass the JWT in the HTTP header to /verify #1446

Open evanugarte opened 1 week ago

evanugarte commented 1 week ago

the endpoint is here

https://github.com/SCE-Development/Clark/blob/7caadc0adbfd83cb9ec866f9113ef41a19a30afb/api/main_endpoints/routes/Auth.js#L191

where we call it from the frontend is here

https://github.com/SCE-Development/Clark/blob/7f37d07bb50f9517cba158e7a2f0042bb0b92500/src/APIFunctions/Auth.js#L81

at the moment we are sending the token as part of the JSON body, when instead we should send the token as part of the HTTP header.

game plan

[ ] learn how to send a token in the authorization header with axios
[ ] learn how to parse the token from the header instead of the JSON body in the first link above
[ ] refactor the tests in https://github.com/SCE-Development/Core-v4/blob/de32dd125c212c699c1ab73387c6a609414237dc/test/api/Auth.js#L172 to reflect the new location of the token in the request