database - Can I just create and store list of auth tokens instead of using JWT and similar? -


i'm creating first spa using nodejs stack development , came point should design authentication , secure parts of app.
read lot auth techniques including jwt, oauth, etc. still didn't find «a real world example».
let's assume task secure parts of app public. app isn't designed work 3rd party services see no need use google or facebook auth. want use login/password , store data using own database server.
don't understand point of having authentication stateless. came simple conclusion can design authentication in way:

  • i store users logins , passwords in database.
  • user auth means user enters credentials, server checks , creates token. server saves token database. user saves token using browser local storage or somewhere else if it's not browser environment.
  • on each request client sends token, server checks token exists , responds appropriately.
  • user can login different devices, create multiple tokens him.
  • we can end specific session or sessions deleting user tokens database.
  • we can manage tokens in way want, example server can check expiration time , invalidate (delete) token.

is ok? jwt require additional implementation if need invalidate token, saw different examples, of them based on storing invalid tokens what's point of if can store valid tokens? lose statelessness implementing storage.
see can use cookies instead of implementation described above don't idea use cookies in restful app because depends on browser-like client environment.
disadvantages of storing tokens on server?

i have implemented 1 project in user authentication required , token stored database.

you can find example here.


Comments

Post a Comment

Popular posts from this blog

node.js - Node js - Trying to send POST request, but it is not loading javascript content -

i have been trying send post request website, , has not been loading full site. i guessing problem node js not loading javascript content, executing it. can see javascript in response, though never loads content javascript files producing in html. what mean is, doesn't execute javascript. how make node js code overcome this, , wait the full website load? have tried native code, , "request' module, both producing same errors. if helps, don't need native javascript. modules fine. some code have tried (request module): var options = { method: 'post', uri: 'https://url', formdata: { 'email': 'email', 'prize': '0', 'transactional': 'on' }, headers: { /* 'content-type': 'application/x-www-form-urlencoded' */ // set automatically } }; rp(options) .then(function (body) { console.log(body) }) .catch(function (err) { console.log(err) }); when fetch content...
Read more

javascript - Replicate keyboard event with html button -

i have tried few ways make happen. have javascript pinball game uses keyboard keys controls. converting application touch screen display. workaround, hoping overlay buttons when clicked simulate keyboard strokes. have done research , sounds should work. using jquery v3.2.1 here things have tried far... html element: <input type="button" class="coil"></input> $('.coil').trigger({type: 'keydown', which: 40, keycode: 40}); with this, not errors, nothing happens. var coilkey = $('body').keydown(function(e) { switch (e.keycode) { case 40: break;} }) $('.coil').click(coilkey); this 1 returns error in console... ((jquery.event.special[handleobj.origtype] || (intermediate value)).handle || handleobj.handler).apply not function below javascript game engine handles key listeners... addkeylistener: function (keyandlistener) { this.keylisteners.push(keyandlistener); }, // gi...
Read more

javascript - Web audio api 5.1 surround example not working in firefox -

i've been playing lott lately web audio api on both firefox , chrome. few days ago started experiment surround set. when trying surround audio in web audio api came notice example works fine in chrome v59 not in firefox v54. // create web audio api context var audioctx = new (window.audiocontext || window.webkitaudiocontext)(); audioctx.destination.channelinterpretation = 'discrete'; audioctx.destination.channelcountmode = 'explicit'; audioctx.destination.channelcount = 6; var oscillators = []; var merger = audioctx.createchannelmerger(6); console.log(audioctx.destination, merger); //merger.channelinterpretation = 'discrete'; //merger.channelcountmode = 'explicit'; //merger.channelcount = 6; var addoscilator = function(channel, frequency) { var oscillator = audioctx.createoscillator(); oscillator.frequency.value = frequency; // value in hertz oscillator.connect(merger,0,channel); oscillator.start(); oscillators.push(o...
Read more