aboutsummaryrefslogtreecommitdiff
path: root/gn_auth/auth/authorisation
diff options
context:
space:
mode:
authorFrederick Muriuki Muriithi2024-05-06 07:31:42 +0300
committerFrederick Muriuki Muriithi2024-05-06 07:31:42 +0300
commitab04428463518d05594491ca159f5ab0d7575721 (patch)
treef541a058e057320f4065e189b315cc9e0b2952dd /gn_auth/auth/authorisation
parent51e3a545d7380e5b1983b0a1e8b5088a88efe522 (diff)
downloadgn-auth-ab04428463518d05594491ca159f5ab0d7575721.tar.gz
Add `jti` claim
Have each JWT token have a `jti` claim (JWT ID) to help with tracking refreshes, and therefore validity of the JWTs. If a refresh token is used more than once, then that refresh token, and all its progeny/descendants are considered invalid, since that token could have been stolen.
Diffstat (limited to 'gn_auth/auth/authorisation')
0 files changed, 0 insertions, 0 deletions