Open fantadrinker opened 1 month ago
currently the user id is decoded from token passed in from 'authorization' header, I should move away from that and use the passed in user id instead.
But the issue is how to check if user id matches the passed in auth header?
don't think this is needed, I can use the decoded value
currently the user id is decoded from token passed in from 'authorization' header, I should move away from that and use the passed in user id instead.
But the issue is how to check if user id matches the passed in auth header?