Token refresh - Githubissues

ml-archive / Newt

Token management made easy

MIT License

0 stars 0 forks source link

Open chriscombs opened 5 years ago

chriscombs commented 5 years ago

Ability to manually (as well as automatically) refresh token.

[ ] When storing the token, a service should check if the token is valid
[ ] When retreiving the token, a service should check that the token is still valid. If it is invalid (or expiring soon?) it should attempt to refresh the token. If unable to refresh, it should notify the caller that the token has expired.

pbodsk commented 5 years ago

This framework could be relevant if we want to decode JWT tokens to verify if a token has expired

pbodsk commented 5 years ago

If we don't want to include a separate dependency, we could consider rolling our own JWT token validator/parser.

This has been done on e-boks for instance.

See the JWTToken class on e-boks 4.0