Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
vetsmen2017-10-20 00:37:02
JavaScript
vetsmen, 2017-10-20 00:37:02

Authorization principle using JWT?

Good day. I did not really understand the principle of authorization using JWT.
So I sent a request to the server for authorization, it checks all the data, in response it issues a JWT token. Question:
1) Where is the best place to store it?
2) There is also such an option that the attacker will simply take this token, send it to the server and impersonate another user. How to deal with this option?
3) Let's say we figured out the storage. Now I'm sending a request to the server to get some information and I want to identify the user. On the server, one JWT comes from it. How can I do it?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Alexander, 2017-10-20
@vetsmen

Recently, there were two videos on this topic from Ilya Klimov, about the theory and problems jwt:
youtu.be/vQldMjSJ6-w
youtu.be/601CnGGp_MU

Similar questions
S
Sergey Nizhny Novgorod2017-03-24 16:49:17
How to get the last element as fast as possible in Django? 1Reply
K
Kirill Kolesnikov2020-09-14 16:56:38
Elementor. How to make it so that on computers, tablets there are 2 columns, and on mobile 1? 2Reply
K
Katie Divs2015-03-25 18:17:53
Why doesn't search work in Sublime 3? 2Reply
C
CanterGhost2018-11-10 01:31:28
WiFi module on HP pavilion 15 n060sr, what can I replace it with? 2Reply
K
Konstantin Khairov2019-09-01 17:15:34
Why is the speed low when uploading through a caching server (proxy_cache)? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question