C
C#13mo ago
𝕭ourn

❔ JWT Refresh tokens

I've got a RefreshToken endpoint on my UserController class. I'm currently able to regenerate these tokens, but i don't really know what strategy to use for making sure these tokens aren't used more than once. Any suggestions?
3 Replies
M B V R K
M B V R K13mo ago
RefreshTokens in most cases should be saved on a storage like Database, with some properties, so you can do this approach and use some properties to determine if a refreshtoken is Expired, Invoked, Used or ... You can take a look on this topic here : https://mbarkt3sto.hashnode.dev/storing-jwt-refresh-tokens-in-a-database-using-identity-and-ef-core-in-aspnet-core
M B A R K's Blog
Storing JWT Refresh Tokens in a Database using Identity and EF Core...
One important aspect of JWT usage is the handling of refresh tokens, which are used to obtain new access tokens after the original one expires. In this article, we will discuss how to store JWT refresh tokens in a database using Identity and EF Core ...
𝕭ourn
𝕭ourn13mo ago
Thanks you for the answer, your article looks great! i know that it might sound offtopic, but i've never worked with Identity before. Do you also have an article about adding Identity to a ASP.NET Web API? To give more context, i'm using React for the frontend, instead of the typical Razor pages MSDN showcases when talking about Identity. Thanks in advance!
Accord
Accord13mo ago
Was this issue resolved? If so, run /close - otherwise I will mark this as stale and this post will be archived until there is new activity.
Want results from more Discord servers?
Add your server
More Posts
❔ System.IO.FileNotFoundException: 'Could not load file or assembly 'System.Runtime, Version=6.0.0.0Hey all I am designing a win forms application and when trying to test a build I am greeted with the❔ streaming an IAsyncEnumerable<string> from complex typehey. i have a minimal api that looks like this: ```cs public static async IAsyncEnumerable<string> A❔ Assign result from await to a variableIs there a difference between those two calls? `var awaitable = await GetObject(); otherObject.IntP❔ ✅ Prints System.Func`1[System.Int32] instead of actual int.I'm trying to return a private field member variable and instead of giving me the actual integer val❔ Exception trying to run code from a .NET Framework 4.5.2 on .NET 6 projectHi, I have a new project using .NET 6, but I need to call a method in a project using .NET Framewo✅ Hosting web app with SQL Server for free/minimal cost?Hello there, I was wondering if anyone knew any cloud/hosting providers that allow hosting an ASP.N❔ WinUI3: Restoring Window Size on relaunchIn UWP and WinUI2, it would automatically relaunch to the last width/height of the application, but ❔ ✅ custom mapper and resolversHello, I've been trying to use automapper for a while, but now I've decided to just replace it with