sorcery icon indicating copy to clipboard operation
sorcery copied to clipboard

Published 20 hours ago verified publisher icon NoamB

Sessions and JWTs

Open sirwolfgang opened this issue 9 years ago • 1 comments

I am working on a rails/jwt integration (sirwolfgang/jwt_keeper), which I would like to integrate with sorcery.

One of the key things is that the tokens are not stored in sessions, but are handled by the frontend and stored in local storage. (Depending on how you use them) I bring this up because currently sorcery default auths by the login_from_session then by login_from_other_sources. I think it would be favorable to make this slightly more modular by not having a session based default, but rather have login_from_sessions be one of the (priority loaded) methods. This would allow pretty seamless integration with completely other flows like JWT(which could use a few different approaches as well).

sirwolfgang avatar Apr 22 '16 14:04 sirwolfgang

@sirwolfgang this is related to #70 and its on the roadmap, please check out the discussion there and weigh in!

Ch4s3 avatar May 24 '16 18:05 Ch4s3