Validate token in current_user #47
Comments
Hey @valeriiduz, |
In lib, we have
and I want to add the similar condition to
|
Ah okay! So, the admin token is managed by this library, the user tokens are usually your custom implementation. Both the admin token and the user tokens are validated. The validation you're referring to here determines whether the admin token is still valid, it checks if the You could either wrap the functions and implement a custom handler for the exception that is thrown for expired user tokens or check the I hope I got you right? |
Yep, got it. You are right, better to leave this approach upfront, cause different systems can have different flows to regenerate token for users. Thanks! I'll close the issue. |
We figured that
current_user
(line 220) function when receiving a token, doesn't validate the token like lib does inadmin_token
(line 141) method.Is it by design or can I create a fix for that?
The text was updated successfully, but these errors were encountered: