Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
Larisa .•º2019-09-18 09:07:47
JSON Web Token
Larisa .•º, 2019-09-18 09:07:47

What are the options for storing and checking scope in a service?

I decided to try rest_framework_sso (based on a private and public key), there is an identification service, the client is identified, receives an encrypted access_token, with the private key of the identification service.
When contacting another service (other), it passes this access token, the service (other) decrypts the token with a public key, and receives data and, of course, scope.
It turns out that I have scope stored on the identification service. And in order to check on the other - service that the client can, I have to store the scope on my own. It is possible to somehow avoid this.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
V
Vladislav Prikhodko2017-03-04 00:59:08
Is jwt+API authorization properly implemented? 1Reply
E
Eugenue Cesarevich2021-03-26 21:39:41
How to implement "Remember me" feature with JWT? 1Reply
A
animr2019-10-22 13:34:04
Why doesn't the jwt class see the file in the same folder? 0Reply
R
romaro2021-04-28 13:01:14
Are there errors in my magic link authentication scheme? 0Reply
M
Michail2017-06-02 00:13:26
How to refresh jwt token without user? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question