Answer the question
In order to leave comments, you need to log in
Storing an API token in a database?
Hello, I have implemented such a system that after logging in, a token is generated for the user through his name, secret key and algorithm, which is installed in sessions with the Authorization key. After that, the user is redirected to the main page, on which his API token is located, through which he will be able to make API requests from the web version and from some other place like Postman.
Is there a need to store the API token in the database? This token has a lifetime and after it expires, the user will have to open the cookie session again (log in using the web form), go to the main page and renew the token for further use.
Answer the question
In order to leave comments, you need to log in
Refresh the token and let the client refresh it. In the case of a single client and server, it is generally not necessary to store it, the server itself will calculate that the token is rotten and will send a new one. There are a lot of guides on the net.
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question