Pedro Aguiar

What's the output of `python -V && pip -V`? What about the output of the following? `python

This branch is way behind `main` and OP hasn't acted on the suggestions, but the problem still persists: ### Should be `status_code=409` https://github.com/tiangolo/full-stack-fastapi-template/blob/a7f4d7dd61efd079f067a1f0da0dfebb80838bb4/backend/app/api/routes/users.py#L58-L62 ### Should be `status_code=409` https://github.com/tiangolo/full-stack-fastapi-template/blob/a7f4d7dd61efd079f067a1f0da0dfebb80838bb4/backend/app/api/routes/users.py#L154-L158 ### ~~Should...

I believe [Digital Ocean's Credits for (Open Source) Projects](https://www.digitalocean.com/open-source/credits-for-projects#faqs) would be a good call.

@tomchristie can you close this issue then?

> JWE is not a must have. it just adds more security to your http requests as someone might breach the request channel of a browser and can get hold...

@abstract-entity Did the proposed solution work? If so, can you close this issue?

From what I understand this would be a massive security issue. > "The widest known issue is probably that the header allows for a[n] alg claim to specify which algorithm...

It seems that variable `$accessToken` contains both the `access token` and the `refresh token`, so it should've been called `$oauthTokens` instead.

In this context, I'd expect it to raise an error and halt the execution of program.

I wonder what use case would justify that combination, because it'd tightly couple the backend and the persistence layer. In other words, any change to the backend would directly impact...