I am trying to implement Remeber Me option for authentication workflow.
I use below flow.
Current authentication flow
If Remember me option is checked then save token and jwt token(specially do this because I need some other user info such as groups and roles) to cookie with expiration date. (ex : 5 days )
Auth guard (that is checking all routing changes even if root routing) will check token(not jwt) first
If cookie is empty then redirect to Login page.
If cookie exists then check session(using function of sdk), session is invalid then redirect to Login page.
If session is valid then update jwt(not token) and guard returns true.
I think it seems fine, but I am getting some unexpected errors, not often but once 1 hour has passed (actual session expired).
Questions
Do I have to update token as well? At step 5.
Is this.cognitoUtil.getCurrentUser(); asynchronous function?
What will be returned from cognitoUser.getSession() if session is expired?
If Ques 3 returns session (even if it is valid or invalid), what is the returning value of session.isValid()?
webcat12345
commented
4 years ago
I am trying to implement Remeber Me option for authentication workflow. I use below flow.
Current authentication flow
I think it seems fine, but I am getting some unexpected errors, not often but once 1 hour has passed (actual session expired).
Questions
step 5.this.cognitoUtil.getCurrentUser();asynchronous function?cognitoUser.getSession()if session is expired?session.isValid()?