search

jpadilla / django-rest-framework-jwt

JSON Web Token Authentication support for Django REST Framework
http://jpadilla.github.io/django-rest-framework-jwt/
MIT License
3.19k stars 649 forks source link

JWT_AUTH_COOKIE and refresh view #351

Open GRLeo opened 7 years ago

GRLeo commented 7 years ago

Refresh view needs a jwt token to be passed as a POST data.

But if you are using JWT_AUTH_COOKIE than JWT cookie is HttpOnly and you are unable to send it in POST request from javascript.

Do I understand correctly that token resresh view is intended to be used only for server-side requests? So if I want to refresh JWT from javascript I have to implement additional view which will pass JWT cookie value to the original refresh view.

c0dezli commented 6 years ago

+1 I'm lost on this part too

b3ni commented 6 years ago

+1

evrenbingol commented 4 years ago

+1000