Open Kikobeats opened 5 months ago
I noted verify is internally calling decode:
verify
decode
https://github.com/tsndr/cloudflare-worker-jwt/blob/main/src/index.ts#L210
In a user flow, normally you want to verify the code before decoding it, in this way:
await verify(token, JWT_SECRET, { throwError: true }); return decode(token).payload;
That means the token is being decode two times. A more optimal API would be return the decode value from verify:
const { decoded } = await verify(token, JWT_SECRET, { throwError: true });
I noted
verify
is internally callingdecode
:https://github.com/tsndr/cloudflare-worker-jwt/blob/main/src/index.ts#L210
In a user flow, normally you want to verify the code before decoding it, in this way:
That means the token is being decode two times. A more optimal API would be return the decode value from
verify
: