How to refresh jwt token? #1
Comments
|
There is no example on refresh tokens in this repository because there are different strategies for that. If you see the README's References section's link you can follow some articles about it. Instead, we have a simple example at: https://github.com/kataras/iris/tree/jwt-new-features/_examples/auth/jwt/refresh-token. In-short: Sign access, refresh tokens and generate a pair which sent to the client func generateTokenPair() jwt.TokenPair {
// Simulate a user...
userID := "53afcf05-38a3-43c3-82af-8bbbe0e4a149"
refreshClaims := jwt.Claims{Subject: userID}
accessClaims := UserClaims{
ID: userID,
Username: "kataras",
}
accessToken, err := jwt.Sign(alg, secret, accessClaims, 5 * time.Minute)
refreshToken, err := jwt.Sign(alg, secert, refreshClaims, 1 * time.Hour)
tokenPair := jwt.NewTokenPair(accessToken, refreshToken)
return tokenPair
}Create a handler on The refresh operation (there are other strategies though) currentUserID := "53afcf05-38a3-43c3-82af-8bbbe0e4a149"
refreshToken := take from header...
verifiedToken, err := jwt.Verify(alg, secret, refreshToken, jwt.Expected{Subject: currentUserID})
if err != nil { /* send 401 */ }
tokenPair := generateTokenPair()
// ^ send this to the client Create a handler on Your client can fire 'silent' calls to the |
|
@daheige If you still need a native |
|
Thank you very much. After reading what you said, there are indeed different refresh strategies. This depends on the business scenario. I will try these strategies you mentioned, and if there are other questions, I will consult you again. |
https://github.com/kataras/jwt#token-pair
How to refresh jwt token? From this help document, it seems that I don't see how to use it. Can you give a specific http web demo or how to refresh the token.
The text was updated successfully, but these errors were encountered: