stackoom
  简体   繁体   中英

How to do JWT authentication with react?

 原文  2022-06-15 22:28:48       javascript/ jwt

Question

I'm not sure how to properly do JWT authentication on the front end, I didn't have almost any problems on the back end though.

with Javascript I didn't get too far past this snippet as I had to redo stuff many times and it didn't work anyway

const submit = async (e) => {
    e.preventDefault();
    await axios('http://localhost:8080/api/login', {
        method: 'POST',
        headers: {'Content-Type': 'application/x-www-form-urlencoded'},
        credentials: 'include',
        data:new URLSearchParams(`username=${username}&password=${password}`)
    });
}

Which basically just displays the access&refresh tokens in the network info of the page.

how do I actually identify the user on a website from there on and actually be able to use the user's own data, such as files for example?

I need to just be able to identify the user, all their data, such profile-info, photos etc... and the user to only be able to access its own data

2 answers

solution1
 1  2022-06-15 23:20:17

JWTs are used to encode what actions user is allowed to take and which pages to see. For example you could encode their role inside the token to indicate what they are allowed to access. In order to retrieve their data such as profile info, photos etc. you have to either send additional information, probably the user id or you have to encode the id field inside the token which is not there by default.

solution2
 1 ACCPTED  2022-06-15 23:51:41

You already have what you need. the access&refresh tokens are the ones needed for routes that require authorization. The token has the user details which identifies them to the back end who is making requests. after login you save the token on the browser and as long as the token is valid the user is logged in. The token are sent along with requests that need authorization to access as a header like this let say to get user full profile we need to have been logged in ->

axios(' api/user/profile ', { method: 'POST', headers: {'Content-Type': 'application/json,'Authorization':'Bearer' + localStorage.getItem('user-token')}, }); .

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How does JWT do Authentication securing react app with jwt authentication How to make JWT Token Authentication on pure Django without React? How do I set role in Node JS JWT Authentication? React JS + REDUX + JWT Authentication JSON issue How to render after authentication with JWT How to mix jwt authentication with ACLs How can I implement http-only cookie-JWT authentication using React and Node JS? Authentication with JWT How to handle file downloads with JWT based authentication?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM