8000 Implement client-side authentication · Issue #103 · brouberol/5esheets · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
Implement client-side authentication #103
New issue
New issue
Open
Open
Implement client-side authentication#103
Labels
frontendAnything having to do with the SPA codebasesecurityAnything related to login, permissions and JWT
@brouberol

Description

@brouberol
brouberol
opened on Jul 9, 2023

Now that the authentication mechanism is implemented backend-side (see #100), we need to make sure the 5esheet generated API client supports it. Namely, we need to:

  • have the user fill a username/password form
  • send them via a POST request to /api/login/token, which (if the username/password are correct) will return set-cookie headers containing the JWT access token, as well as a CSRF token
  • send the JWT access token any subsequent request cookies, as well as the content of the CSRF cookie in the X-CSRF-TOKEN header

Metadata

Metadata

Assignees

No one assigned

    Labels

    frontendAnything having to do with the SPA codebasesecurityAnything related to login, permissions and JWT

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      0