Refresh access token does not update the session data with the newest value - Githubissues

myartsev / ember-simple-auth-jwt

Ember Simple Auth extension for JWT

MIT License

8 stars 3 forks source link

Refresh access token does not update the session data with the newest value #7

Closed myartsev closed 6 years ago

myartsev commented 6 years ago

Repro:

Launch demo app
Navigate to http://localhost:4200/protected and log in
Go back to the index route
Note the value in the signature field
Refresh the browser

Expected: signature field should be updated with the new JWT token (as can be seen in the network traffic).

Actual: signature field stays the same, with the old JWT value.

Impact: Restoring a session can fail since the old (potentially expired) JWT value is used.