Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
vetsmen2017-10-20 00:37:02
JavaScript
vetsmen, 2017-10-20 00:37:02

Authorization principle using JWT?

Good day. I did not really understand the principle of authorization using JWT.
So I sent a request to the server for authorization, it checks all the data, in response it issues a JWT token. Question:
1) Where is the best place to store it?
2) There is also such an option that the attacker will simply take this token, send it to the server and impersonate another user. How to deal with this option?
3) Let's say we figured out the storage. Now I'm sending a request to the server to get some information and I want to identify the user. On the server, one JWT comes from it. How can I do it?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Alexander, 2017-10-20
@vetsmen

Recently, there were two videos on this topic from Ilya Klimov, about the theory and problems jwt:
youtu.be/vQldMjSJ6-w
youtu.be/601CnGGp_MU

Similar questions
U
unlik2015-03-20 00:01:49
How to backup a dump to a remote server? 2Reply
T
Timofey2015-04-01 11:13:34
sails.js impressions? 5Reply
R
Ruslan Gayfutdinov2015-04-01 21:55:37
How and with what to track the work of employees? 4Reply
Y
Yrets1692021-03-22 15:59:27
How to properly pull from two mysql tables? 3Reply
A
Andrey Andreevich2022-01-15 12:43:59
How to compare two pictures pixel by pixel? 4Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question