Max/SolidScribe
Max/SolidScribe
1
0
Fork 0
Code Issues 24 Pull Requests Releases Wiki Activity

JSON Web Token Security Enhancement #36

New Issue
Open
opened 2020-03-24 14:26:42 -07:00 by Max · 0 comments
Max commented 2020-03-24 14:26:42 -07:00
Owner
Copy Link

Add additional data to the json web token that makes it more secure for the user.

  • Add some amount of time before it times out, like 30 days or something.
  • Add some data other than the user ID to make sure the same token can't be used on multiple devices
  • Add some data that ensures the user created it and it wasn't copied by someone who knew the password to to create the token.
  • Add a set number of requests per token. Have some way to refresh request count like opening a note, saving a note, etc
Add additional data to the json web token that makes it more secure for the user. * Add some amount of time before it times out, like 30 days or something. * Add some data other than the user ID to make sure the same token can't be used on multiple devices * Add some data that ensures the user created it and it wasn't copied by someone who knew the password to to create the token. * Add a set number of requests per token. Have some way to refresh request count like opening a note, saving a note, etc
Max added the
Security
Enhancement
 labels 2020-03-24 14:26:42 -07:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels   
Bug

An issue to fix

  
Enhancement

Update or improvement to existing implementation.

  
Idea

Potential features that can be considered.

  
In Progress

I'm Currently working on this feature

  
New Feature

New Features

  
Security

Updates to application and server security

No Label
Bug
Enhancement
Idea
In Progress
New Feature
Security
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Max/SolidScribe#36
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?