Closed StevonStevoff closed 1 year ago
Added authentication route to refresh jwt tokens.
This presents a security flaw wherein an attacker could infinitely refresh tokens after stealing a single token, however we can just discuss this in the report if we want, or you know pretend it doesn't exist :)
Added authentication route to refresh jwt tokens.
This presents a security flaw wherein an attacker could infinitely refresh tokens after stealing a single token, however we can just discuss this in the report if we want, or you know pretend it doesn't exist :)