issues
search
apstanisic
/
zmaj
Zmaj is a headless CMS for managing database
https://zmaj.vercel.app
MIT License
5
stars
0
forks
source link
Use JWT + KV store instead of security_tokens table for
#81
Open
apstanisic
opened
1 year ago
apstanisic
commented
1 year ago
Edit: Maybe leave KV all togather, and use this solutions:
email change confirm. Add current and next email to jwt, and only change if both match
user invitation. We can generate password and display it to user. We will never have access to password + we'll recommend user to change it.
Sign Up. Ne need, just check if JWT is valid and confirm
Password reset. Add part of the hash to JWT
https://stackoverflow.com/a/54865104
Edit: Maybe leave KV all togather, and use this solutions: