IMPLEMENTATION METHOD OF ID TOKEN REISSUE BY REFRESH TOKEN

Asked 2 years ago, Updated 2 years ago, 88 views

We authenticate with an id token on AWS cognito.
If the token expires, we are planning to reissue the id token using the refresh token to continue the http request.

When trying to achieve the above, is it best practice to keep the id token in the client's cookie (memory) and request the server (aws) to reissue the id using the refresh token once it has expired?
However, in that case, I have to check the expiration date of the id token before every http request, so I was wondering if that would be a good idea.

aws oauth aws-lambda

2022-09-30 21:28

1 Answers

I don't have the code at hand, so I remember vaguely, but if you call Cognito's getSession method, they will refresh you if necessary.
Also, this is a vague recollection, you should not be able to refresh without calling useCodeGrantFlow.
Try using these as keywords.

2022-09-30 21:28

If you have any answers or tips

Popular Tags
python x 4647
android x 1593
java x 1494
javascript x 1427
c x 927
c++ x 878
ruby-on-rails x 696
php x 692
python3 x 685
html x 656
Popular Questions

557 Scrap text information after the "View More" button when searching in the Yahoo! News search window

546 Understanding How to Configure Google API Key

542 Unable to install versioned in Google Colab

642 /usr/bin/google-chrome:symbol lookup error:/usr/bin/google-chrome: undefined symbol:gbm_bo_get_modifier

537 Uncaught (inpromise) Error on Electron: An object could not be cloned

© 2024 OneMinuteCode. All rights reserved.