This website requires JavaScript.
Explore
Help
Sign In
Yadciel
/
taskcafe
Watch
1
Star
0
Fork
0
You've already forked taskcafe
Code
Issues
Pull Requests
Packages
Projects
Releases
Wiki
Activity
998db2a5da
taskcafe
/
migrations
/
0064_rename-refresh_token-to-auth_token.up.sql
2 lines
48 B
MySQL
Raw
Normal View
History
Unescape
Escape
refactor: replace refresh & access token with auth token only changes authentication to no longer use a refresh token & access token for accessing protected endpoints. Instead only an auth token is used. Before the login flow was: Login -> get refresh (stored as HttpOnly cookie) + access token (stored in memory) -> protected endpoint request (attach access token as Authorization header) -> access token expires in 15 minutes, so use refresh token to obtain new one when that happens now it looks like this: Login -> get auth token (stored as HttpOnly cookie) -> make protected endpont request (token sent) the reasoning for using the refresh + access token was to reduce DB calls, but in the end I don't think its worth the hassle.
2021-04-29 04:32:19 +02:00
ALTER
TABLE
refresh_token
RENAME
TO
auth_token
;
Reference in New Issue
Copy Permalink
