[Request] Session support token communication not only using cookie. #1200
Milestone
Comments
zheeeng
changed the title
|
I agree, we have a plan in the roadmap for authentication and verification of API calls. To be honest that was ready for the current release, I've done it and tested it but I had to manage a lot of external products the last months, so it was posponded and removed from the release. Will be here on the upcoming release but this has nothing to do with Sessions. You can already use the current sessions + JWT without any issue, we do it everywhere. |
|
@zheeeng Forgot to mention that you can check the |
kataras
added a commit
that referenced
this issue
Jul 2, 2019
…fication. With Examples and Tests. Relative to this one as well: #1200
github-actions bot
pushed a commit
to goproxies/github.com-kataras-iris
that referenced
this issue
Jul 27, 2020
…fication. With Examples and Tests. Relative to this one as well: kataras#1200 Former-commit-id: 3a29e7398b7fdeb9b48a118b742d419d5681d56b
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
For some mobile application, it doesn't recognize
set-cookieresponse header and the cookie communication has the CORS risk. I personally prefer using the token as the authentication ticket and the server auth validator check a specific request header, e.g.Authentication, likes the JWT does.It is better that we can decide to use
cookieortokento communicate with clients.The text was updated successfully, but these errors were encountered: