Результаты для "jwt refresh token best practices"

JWT refresh token flow - Stack Overflow

https://stackoverflow.com/questions/27726066/jw...

31 дек. 2014 г. ... When you do log in, send 2 tokens (Access token, Refresh token) in response to the client. · The access token will have less expiry time and ...

What are the best practices for refresh token? : r/dotnet - Reddit

https://www.reddit.com/r/dotnet/comments/1gc84j...

25 окт. 2024 г. ... Regarding your actual question, when you register your JWT bearer options you need to specify your token validation parameters to include ...

JWT Security Best Practices | Curity

https://curity.io/resources/learn/jwt-best-prac...

23 июл. 2024 г. ... A best practice is to set your JWT expiration to minutes or hours at maximum. You should avoid issuing access tokens valid for days or months.

What Are Refresh Tokens and How to Use Them Securely

https://auth0.com/blog/refresh-tokens-what-are-...

Use Refresh Tokens in Your Auth0 Apps · Keep it secret. Keep it safe. · Do not add sensitive data to the payload. · Give tokens an expiration. · Embrace HTTPS.

What is the best approach for JWT Refresh Token? - Medium

https://medium.com/kocsistem/what-is-the-best-a...

8 сент. 2021 г. ... A possible solution is to add a device identification field in your database and issue a refresh token per device. 2.Renewing Access Tokens with ...

Refresh Token Rotation: Best Practices for Developers

https://www.serverion.com/uncategorized/refresh...

18 мар. 2025 г. ... Never store tokens in localStorage , as it is vulnerable to XSS attacks. · Avoid embedding sensitive data in the JWT payload. · Ensure all stored ...

Significance of a JWT Refresh Token - Baeldung

https://www.baeldung.com/cs/json-web-token-refr...

6 июл. 2024 г. ... Refresh tokens offer an elegant solution to the challenges posed by token expiration. These long-lived tokens are used to obtain a new access token when the ...

Token Best Practices - Auth0

https://auth0.com/docs/secure/tokens/token-best...

Token Best Practices · Keep it secret. · Do not add sensitive data to the payload: Tokens are signed to protect against manipulation and are easily decoded. · Give ...

The Developer's Guide to Refresh Token Rotation - Descope

https://www.descope.com/blog/post/refresh-token...

15 мар. 2024 г. ... Refresh token reuse detection goes a step further by monitoring for attempts to use an already-used (or invalidated) refresh token. This can be ...

Managing JWT Refresh Tokens in Spring Security

https://www.javacodegeeks.com/2024/12/managing-...

16 дек. 2024 г. ... 4. Best Practices ... Keep access tokens valid for a short duration, such as 5–15 minutes. Reduces the exposure window in case of token compromise ...

Understanding the Role of Refresh Tokens in JWT Authentication

YouTube • April 6, 2025 • 01:53

Explore how refresh tokens function in JWT authentication, and learn best practices for their implementation in web apps. --- This video is based on the question https://stackoverflow.com/q/77875156/ asked by the user 'Kolopox' ( https://stackoverflow.com/u/7528835/ ) and on the answer https://stackoverflow.com/a/77884972/ provided by the user ...

Implementing Refresh Tokens in .NET Core: A Comprehensive Guide | Refresh Token | JWT Authentication

YouTube • December 30, 2024 • 22:16

Implementing Refresh Tokens in .NET Core: A Comprehensive Guide | .NET Core | Refresh Token | JWT | Authentication | API Security | .NET Core Tutorial | Implement Refresh Token | Token Management | Secure API | C# | ASP.NET Core Discover how to implement refresh tokens in your .NET Core application with this detailed step-by-step guide. We'll ...

Spring Security Access Token and Refresh Token Tutorial With Jwt & Redis [2025]

YouTube • April 11, 2025 • 02:11:27

Hey devs! It’s the weekend time to lock down your hard work. In this video, we dive into Spring Security and explore how to implement robust authorization and authentication using JWTs and Redis. You’ll learn how to configure Spring Security 6 the right way, implement access and refresh tokens with JWTs, set up Redis to handle token ...

Secure your REST API with JWT: Access + Refresh Token in Spring Security (2025)

YouTube • April 7, 2025 • 01:37:13

Secure your Spring Boot REST API using JWT authentication with access + refresh tokens and a custom JWT filter. 🔐 In this in-depth tutorial, you’ll learn how to build a full JWT authentication system using Spring Boot 3 and Spring Security 6—from scratch. If you’re an experienced developer with strong Core Java theory but little hands ...

Implementing Refresh Token Rotation: Best Practices and Considerations

YouTube • April 4, 2025 • 01:30

Discover how to implement `Refresh Token Rotation` effectively, the advantages it offers, and key considerations for security in OAuth 2.0 systems. --- This video is based on the question https://stackoverflow.com/q/69314616/ asked by the user 'Sap Green' ( https://stackoverflow.com/u/13817438/ ) and on the answer https://stackoverflow.com/a ...

JWT Authentication in .NET 9 Web API | Access & Refresh Tokens | Complete API Testing using Postman

YouTube • April 12, 2025 • 23:49

In this tutorial, you’ll learn how to implement JWT Authentication in .NET 9 Web API — step by step. This video covers both Access Token and Refresh Token implementation, along with complete hands-on testing using Postman. By the end of this tutorial, you will understand not only how to write the code but also how to test JWT authentication ...