node-auth/AccessVsRefresh.txt at 594cd5286611360d03d25b0d1cee7d327fa6803e - BradNut/node-auth - Forgejo: Beyond coding. We Forge.

BradNut/node-auth

mirror of https://github.com/BradNut/node-auth synced 2025-09-08 17:40:17 +00:00

Bradley Shellnut 594cd52866 Authorizing user on login, setting refresh token and access token on login, creating the session and storing JWT with session in DB, decoding JWT from DB while updating refresh and session tokens.

2021-03-08 16:10:43 -08:00

12 lines

No EOL

277 B

Text

Raw Blame History

 Access Token
 * JWT
 * Contains all of the info someone needs to be logged
 * Says this user has Access
 * Only available in current session
 Refresh Token
 * JWT
 * Only contains session id
 * If valid, then it is used to generate new access Token
 * Used to refresh the access token