Created
July 1, 2019 13:14
-
-
Save jcharles22/4e4b44fd58053a20488560554b4f74a6 to your computer and use it in GitHub Desktop.
Expiry time assignment
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Should the client or the server take more security precautions? | |
Server | |
What's the difference between local storage and session storage? | |
session storage gets cleared when the page session ends. | |
What problem does a JWT expiry time solve? | |
that JWTs are valid forever | |
Is a refresh endpoint protected or public? | |
protected | |
What would happen if a refreshed JWT was requested with a JWT that had already expired? | |
the method will throw an error and our middleware will respond with the unauthorized error | |
What does it mean to queue a callback? | |
have a function ready to be called at a ceartin time | |
What does the clearTimeout function do and what argument do you pass into it? | |
the timer you want to clear and the amount of time you want to pass in miliseconds | |
For which of the following events should a refresh request be queued after? | |
A successful login request | |
What is OIDC? | |
OpenID Connect industry standard protocol for authentication systems |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment