Closed mortebrume closed 1 month ago
responses codes coming from the API :
access
, refresh_token
http-only cookie setaccess
, refresh_token
http-only cookie updatedToken is blacklisted
, token_not_valid
Token is invalid or expired
, token_not_valid
Given token not valid for any token type
, token_not_valid
class for auth in js for managing state, mainly the access token and the connexion bool. renew access token when the token expires, get the refresh token from httponly cookie. need to check if access token has expired. csrf need to be managed when there's a login.