Should I make authentication request for every single page in app?
up vote
0
down vote
favorite
I am building application where I save JWT in cookies. The way I save JWT in cookies is secure, so I can't check it using JS script but only via http call. So when server returns my JWT from my cookies, I save it in store, but problem is when I refresh page. So there is my question.. imagine I enter web page in my app where I make no http request at all, but site header should be modified weather I am authorized or not. so should I make http call to check my JWT in cookies for every single page even though I make no request? or should I check JWT only during requests?
in simple words should I make additional requests to check my JWT?
http security authentication cookies jwt
add a comment |
up vote
0
down vote
favorite
I am building application where I save JWT in cookies. The way I save JWT in cookies is secure, so I can't check it using JS script but only via http call. So when server returns my JWT from my cookies, I save it in store, but problem is when I refresh page. So there is my question.. imagine I enter web page in my app where I make no http request at all, but site header should be modified weather I am authorized or not. so should I make http call to check my JWT in cookies for every single page even though I make no request? or should I check JWT only during requests?
in simple words should I make additional requests to check my JWT?
http security authentication cookies jwt
add a comment |
up vote
0
down vote
favorite
up vote
0
down vote
favorite
I am building application where I save JWT in cookies. The way I save JWT in cookies is secure, so I can't check it using JS script but only via http call. So when server returns my JWT from my cookies, I save it in store, but problem is when I refresh page. So there is my question.. imagine I enter web page in my app where I make no http request at all, but site header should be modified weather I am authorized or not. so should I make http call to check my JWT in cookies for every single page even though I make no request? or should I check JWT only during requests?
in simple words should I make additional requests to check my JWT?
http security authentication cookies jwt
I am building application where I save JWT in cookies. The way I save JWT in cookies is secure, so I can't check it using JS script but only via http call. So when server returns my JWT from my cookies, I save it in store, but problem is when I refresh page. So there is my question.. imagine I enter web page in my app where I make no http request at all, but site header should be modified weather I am authorized or not. so should I make http call to check my JWT in cookies for every single page even though I make no request? or should I check JWT only during requests?
in simple words should I make additional requests to check my JWT?
http security authentication cookies jwt
http security authentication cookies jwt
edited Nov 10 at 10:44
asked Nov 10 at 10:32
O. Shekriladze
356
356
add a comment |
add a comment |
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53238069%2fshould-i-make-authentication-request-for-every-single-page-in-app%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password