Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
IDONTSUDO2019-11-21 11:59:16
JSON Web Token
IDONTSUDO, 2019-11-21 11:59:16

JWT how to kill sessions?

I am using JWT for Authorization and I don't really understand. How can I reset all user sessions?
Of course, I can re-invent sessions and write data to the authorization database. But I think maybe there is a better solution?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
I
Ilya, 2019-11-21
@IDONTSUDO

JWT does not assume that it can be killed, it only provides for the expiration of the token according to the time that is wired in it.
If you want to manage the lifetime of the token yourself, then you need a ReferenceToken.
In this scenario, you only give the client a unique token id. The full token is stored in your database by this key and you have full control over its lifetime.
https://openiddict.github.io/openiddict-documentat...

Similar questions
I
Igor2019-10-10 16:36:25
Is there subline text on android? 1Reply
L
lexstile2022-01-04 20:10:23
How to properly organize password recovery through jwt? 0Reply
J
JkLKot2020-10-02 00:54:18
How to setup gin-jwt in golang? 1Reply
D
Danil2020-10-12 16:06:14
How to organize an access and refresh token? 0Reply
E
eugenedrvnk2020-10-20 17:10:00
How to work with JWT correctly? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question