generated from ita-social-projects/DevTemplate
-
Notifications
You must be signed in to change notification settings - Fork 10
Token Behavior
Денис Векерик edited this page Feb 21, 2023
·
9 revisions
As a user I want to refresh access to application without relogin.
Description JWT refresh tokens should be stored in refresh_tokens table and mapped OneToOne to User. When access token expire use /token/refresh endpoint to get new one. After that refresh token should be revoked. Also revoke refresh token on logout.
Tasks Implement assignRefreshToken, refreshAccessToken, revokeRefreshToken on backend. Automatically refresh token in axios interceptors.response on frontend. Add unit test for backend.