-
Notifications
You must be signed in to change notification settings - Fork 412
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
refreshToken问题 #42
Comments
我仔细看了下作者的refreshToken这块逻辑,应该是用accessToken来获取关联refreshToken进行校验,来刷新accessToken,我目前是这么做的。主要之前接触的都是拿refreshToken来换,由于前端接触后端较少,不清楚这块的常规方案。 |
一般refreshToken签名验证通过后再验证关联的accessToken是否正确就没问题了. |
我也看到这个模块了但是我好奇为什么需要把accessToken和refreshToken存数据库呢?有没有好心的大佬来解答一下小弟的疑惑 |
跟踪 |
对啊,好奇怪。这个refreshToken的逻辑就写了一半就没了。 |
refreshToken没有相关接口,refreshToken校验也只用了过期时间匹配,
The text was updated successfully, but these errors were encountered: