Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
A
A
ag0332020-02-17 19:31:29
OAuth
ag033, 2020-02-17 19:31:29

Where and how to store client_secret?

There is a SPA application written in Nuxt. An API on Laravel is deployed under it. It's time to authorize the administrator and protect requests on behalf of the administrator. The choice fell on laravel passport. And the question arose, is it possible to store the secret key on the client side to get a bunch of tokens? If not, how to organize it on the backend. The option described in the documentation and an additional request from the route was tested, but I want to know if there is any other solution.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Anton, 2020-02-17
Reytarovsky @Antonchik

The normal option is a separate request from the back and transferring the access token to the front.
But you can also try personal access

Report
A
Alex, 2020-02-17
@Kozack

It can be stored in a cookie. Just be sure to read up on how to do it safely.

Similar questions
A
alexeygavrilovs2020-02-18 13:52:34
Connecting Facebook authorization through Socialite? 0Reply
M
Maxim Tarabrin2017-11-20 12:14:49
When do you renew your OAuth token? 2Reply
V
Vyacheslav Ryzhkov2017-11-23 17:52:46
How to write adaptive styles for the VK authorization widget? 0Reply
V
Vanes Ri_Lax2017-11-28 09:37:33
Is a private key needed? 1Reply
T
TitanFighter2017-12-27 05:06:07
OAuth authentication + authorization - what happens after receiving an oAuth token? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question