Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
Alexey2019-08-14 09:45:55
JSON Web Token
Alexey, 2019-08-14 09:45:55

How to update access token using JSON Web Token and Passport JWT?

I generate a token:

// jsonwebtoken package - creating token and answer on him
        var token = jwt.sign(payload, jwtOptions.secretOrKey, { expiresIn: '10m' });
        res.json({token: 'Bearer ' + token});

After 10 minutes, the user will be 'unauthorized'.
Questions:
How and where to get a refresh token?
How will the express route look like to receive a refresh token and generate a new access token?
PS Is it true that JWT is not used in production? How to correctly authorize a user by JWT in express?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
R
RidgeA, 2019-08-14
@azovl

How and where to get a refresh token?

Together with access-token
as an option:
получить refresh_token из тела запроса
если refresh_token в есть базе и он не просрочен 
  то
    сгенерировать новую пару acces_token и refresh_token
    сохранить refresh_token в базе данных
  иначе
    вернуть ошибку что refresh_token недействительный

No

Similar questions
K
keyotor2021-09-05 19:13:26
How to get payload from jwt strategy? 1Reply
S
Samat2021-10-04 08:46:30
Why doesn't AuthGuard work in nest(fastify) + Graphql + jwt? 0Reply
9
95506682020-07-09 01:16:21
How to do the Authentication process in Django? 1Reply
T
Tynkute2020-07-10 21:00:31
Node error: {function} is not a function? 1Reply
N
Nube2018-08-04 16:02:44
How to remember user using JWT? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question