Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Express Middleware local -> jwt does not authorize on redirect #518
Steps to reproduce
Run the following:
In POSTMAN create a new user by executing a POST request to
Kill feathers app.
User should be redirected to
Also, when I purposefully give the wrong credentials the user gets sent to the
Thank you very reading <3<3
I just tried adding cookie config in my
This may well still be an issue, but I think I'm going to simply work around it. As I stop to think about it further, I don't think I want the jwt to be passed to the user for the user to send back. That seems vulnerable. If someone else comes runs into this feel free to disagree and I can reopen, but the next step in my scheme is to have subsequent browser navigation remember the user. This is the responsibility of the server to store the JWT in memory, associated with the user id. Then a custom service to look like up and then pass the the jwt to the authentication service.