All Questions
17 questions
0
votes
1
answer
137
views
Is there a way to keep oauth2 token for infinite time?
I am trying to build an app for scheduling youtube content,
here is how the app works=>
user signs in through google (I get his oauth2 token with youtube scope added)
uploads a video on my site ...
- 367
0
votes
1
answer
17
views
Should I use, Google Auth Token to Verify my Client, If so then How?
I am implementing authentication on my website using Google Auth. After successfully logging in, Google returns a JWT (JSON Web Token). I need to decode this JWT to extract user information and verify ...
0
votes
0
answers
20
views
Can I implement in my Express js application both JWT authentication and Google authentication? [duplicate]
I have created one simple application with React and Express where authentication is required and it is based on JWTs, every time user logs is, server sends him a new access token (by the way, in this ...
- 15
0
votes
0
answers
36
views
OAuth2 and jwts am I using it securely?
I was build a CRUD web application React and Spring Boot.
Needed authentication and as such authentication. Instead of me storing users credentials and sensitive data I thought I would use google for ...
- 11
0
votes
1
answer
74
views
Passing JWTs securely back to the mobile app frontend after signing in with Google OAuth2
I have a server(API) written in Flask and a client(mobile app) written in React Native. The application allows for logging in with either email/password OR with Google. The Google authentication flow ...
- 135
0
votes
0
answers
150
views
API Authentication using Node and Google OAuth2 (googleapis). Recommended way of authenticating the user?
I'm little confussed on how to handle user authorization for secured routes using the Google OAuth2 for the API authentication. I'd be glad for some guidance.
Overview:
My API acts on behalf of the ...
- 346
0
votes
1
answer
176
views
What is the best practice for storing/using GoogleLogin JWT tokens in front-end react
I am building a react application and I am currently leveraging Google OAuth to allow users to sign into the application and storing the information using useState. The following component is used ...
1
vote
2
answers
2k
views
How should stateless oAuth2 social login be implemented for a REST API - Spring Boot
My aim is to have a login page on my Frontend, after logging in getting a JWT from the backend to authenticate on further requests.
I want to add a Google login option aswell, but after playing around ...
- 25
2
votes
2
answers
446
views
Google Oauth per minute rate limits
I have a project in production that uses Google Oauth for authentication purposes. It does not access any sensitive scopes, just the userId, email and profile info. But whenever I have used google ...
5
votes
1
answer
2k
views
Google Sign In - Difference between Access Token, Authentication Token and JWT ID Token
I am using OAuth Flow in my web app. My web app interacts with Google Calendar API, and users authenticate by Signing In with Google (using their Gmail account).
I just wanted to make sure that my ...
5
votes
2
answers
2k
views
How to send a JWT from my back-end server to my front-end after Google OAuth2 Authorization flow
I am creating an application with a React front-end and a Java Spring Boot back-end.
My login flow looks like this:
A user clicks on login on the front end
User is redirected to the Google Oauth ...
- 363
0
votes
2
answers
1k
views
React Native with Google OpenID Connect
I am working on a react native application and I have some problems with OpenID connect. I would like to use some "Login with Google" functionality.
In normal (not native) react app I use ...
- 31
1
vote
1
answer
2k
views
Authenticate Google JWT in NestJs
I have a front end application (angular).
I am making a rest call to a nestjs backend.
This rest call needs an bearer token.
I have the bearer token from google.
However when I use it I get ...
- 21
5
votes
2
answers
1k
views
Id tokens vs access tokens
Auth0 claim I should ALWAYS use an access token to secure an API.
If I have control over both my client app and my backend API - why is it wrong to validate the id token as my authorization for my ...
- 51
0
votes
2
answers
145
views
How to implement token based authentication in oauth2.0 process
Below is my understanding of the process of oauth2.0(using google as the oauth2.0 server)
my customer click 'login with google account' button on client side.
the browser redirect to google's login ...
- 1,748
1
vote
0
answers
630
views
Rails API only - decode Google JWT without user model
My application is separated into a Rails 5 API-only app and a React frontend.
I would like to be able to log in to the frontend React application with Google and receive a JWT.
For each request to ...
- 467