Lr-Projects
TTCTheo's Typesafe Cult
•Created by Lr-Projects on 1/5/2025 in #questions
How to store/design dynamic roles in jwt
Thanks guys, helped a lot
17 replies
TTCTheo's Typesafe Cult
•Created by Lr-Projects on 1/5/2025 in #questions
How to store/design dynamic roles in jwt
Tho I see the point in changing permission levels, I would just encode the roles in the access token when created. The access token would only have a short lifetime or be invalid in server restart. Which would be the case for me on updating the code. But I do see the point for bigger systems where the possibility for servers running different versions is possible
17 replies
TTCTheo's Typesafe Cult
•Created by Lr-Projects on 1/5/2025 in #questions
How to store/design dynamic roles in jwt
Yea that's how if have done it up until now because but I didn't know why. Makes definitely sense for security reasons as the tokens decryption would give away private information on group membership
17 replies