rfcs icon indicating copy to clipboard operation
rfcs copied to clipboard

Published 20 hours ago verified publisher icon strapi

Request — Refresh token

Open Aurelsicoko opened this issue 4 years ago • 6 comments

This issue has been opened because we (as the core team) are looking for contributors to help us co-develop the feature.

Link to the roadmap

Motivations

The current implementation doesn't offer the ability to refresh an existing valid token. Thus, it forces the user to log in every month to generate a new JWT token.

Tasks

  1. Find a contributor
  2. Define the needs
  3. Discuss a solution and technical implementation
  4. Ask for design
  5. Submit RFC

Risks

  • Security breach
  • Required a better authentication flow (see https://github.com/strapi/strapi/pull/2704)

Aurelsicoko avatar Apr 29 '20 15:04 Aurelsicoko