stackoom
  简体   繁体   中英

JWT - High quality ways to handle the user experience of a returning logged in user

 原文  2017-03-28 12:21:53       javascript/ node.js/ reactjs/ authentication/ user-experience

Question

I have a client that, once authenticated, stores a JWT in localStorage . If a user closes the browser, and once again navigates to the site, the client first checks for the JWT in localStorage , and if present, redirects via: 

window.location.href = `/?jwt=${token}`

This works fine except I'm not a fan of the user experience. The user visits a page, is shown a login page, and then it abruptly redirects to a new page.

I have played around with hiding /auth/login 's UI if a JWT token is found, but it's still not great.

What are some better ways to handle the case where a user has left a site, comes back and should be logged in?

Is there a way for a user to return to a site after having closed their browser, and immediately be shown as logged in using JWT's?

1 answers

solution1
 0 ACCPTED  2017-04-17 20:23:58

This post does a great job of answering the question:

https://dev.to/rtfeldman/defense-against-the-dark-arts-csrf-attacks

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Passport JWT not returning right user Checking if user is logged in JWT using cookies Handle logged in user model and view in backbone js What are the ways to show different navbar based on if the user logged or not? Can i keep user logged in, when offline, using jwt? Foundation and equalizer not good user experience End user experience monitoring tools How to handle per-user signing keys when validating a JWT? JWT: how to handle GET requests when user opens a new tab? Is it a secure way to handle returning user in ember?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM