graphql-jwt-tutorial
graphql-jwt-tutorial copied to clipboard
vnovick
For those implementing a variation of this using AWS and having issues with HttpOnly Cookies, and CORS here are some tips: 1. Server-side: Make sure to set your cookie with...
The graphql call works for a public schema (without schema name prefix) but doesn't for other than public schemas. Need to include the schema name in the generated input type...
Bumps [ini](https://github.com/isaacs/ini) from 1.3.5 to 1.3.7. Commits c74c8af 1.3.7 024b8b5 update deps, add linting 032fbaf Use Object.create(null) to avoid default object property hazards 2da9039 1.3.6 cfea636 better git push script,...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Hey @vnovick Loved your [blog post](https://hasura.io/blog/best-practices-of-using-jwt-with-graphql/) as everything is mentioned very clearly. I'd like to ask is there any other alternative to storing `refresh_token` in DB? I think it goes...
Hello, I'm digging into this great repository and I wondered what would your recommendations would be if I were to access those functions from another domain: - GQL API on...
Bumps [express-jwt](https://github.com/auth0/express-jwt) from 5.3.1 to 6.0.0. Commits 678f3b0 6.0.0 7ecab5f Merge pull request from GHSA-6g6m-m6h5-w9gf 304a1c5 Made algorithms mandatory e9ed6d2 5.3.3 8662579 Make clearer sections in the Readme d3e86bf Update...
I appreciate all the work that went into this and the tutorial it was very insightful. I think currently though with the code implementation in this repo it will not...
Bumps [acorn](https://github.com/acornjs/acorn) from 6.2.1 to 6.4.1. Commits 9a2e9b6 Mark version 6.4.1 90a9548 More rigorously check surrogate pairs in regexp validator df0cf1a Mark version 6.4.0 5303412 Also export Parser via Parser.acorn...
In the refresh-token api (/auth/refresh-token), there needs to be a check for expiry of the refresh token. https://github.com/vnovick/graphql-jwt-tutorial/blob/58ebfe1ed6a253fa6b6198ca14001c5eeaa7fbf8/backend/src/auth/index.js#L220
Thank you so much for writing "The Ultimate Guide to handling JWTs on frontend clients". I noticed that you're setting secret_token on the /[register](https://github.com/vnovick/graphql-jwt-tutorial/blob/58ebfe1ed6a253fa6b6198ca14001c5eeaa7fbf8/backend/src/auth/index.js#L75) endpoint. If I'm not mistaken this...
