Comments (8)
hello
what about two different secret keys?
secret key for access token and different secret key for refresh token?
from jwt.
A simple implementation can help you on this without module support:
Install jsonwebtoken
package and its type definition:
npm i jsonwebtoken
npm i -D @types/jsonwebtoken
Implement the refresh token like these:
import * as jwt from 'jsonwebtoken';
public createToken({ id, email, role }: UserModel) {
const user = { id, email, role };
const token = this.jwtService.sign(user);
const refreshToken = jwt.sign(user, refreshTokenSecretKey, { expiresIn: '14d' });
return {
expires_in: expiresIn,
access_token: token,
refresh_token: refreshToken,
};
}
Hope this help!
from jwt.
You can change the expires time when you sign the token.
access_token: this.jwtService.sign(payload_acess, {expiresIn: 50} ),
refresh_token: this.jwtService.sign(payload_refresh, {expiresIn: 500})
here time is on seconds.
from jwt.
If you decide to merge this PR, can you please update the npm package as well with the new version? Thanks!
from jwt.
You're totally right, I completely forgot about it. Just left comments in the PR
from jwt.
Published as 0.2.0 :)
from jwt.
I have the same problem
from jwt.
Hello guys, he asks me if you can tell me how to implement the access token and refresh token with different secret keys each.
I have seen that they can be used with different expiration times, but I still don't know how to implement them with a different secret key. Can you think of something? @isurumaldeniya
from jwt.
Related Issues (20)
- sign function dosent take secret registred in module HOT 1
- secretOrPrivateKey must have a value HOT 3
- jwt module shoud extends ConfigurableModuleClass HOT 1
- Wrong dependency @types/jsonwebtoken HOT 1
- vulnerability in dependancy jsonwebtoken <=8.5.1 HOT 1
- Updating `jsonwebtoken` dependency HOT 3
- Update `@types/jsonwebtoken` to ^9.0.0 HOT 2
- secretOrPrivateKey must have a value HOT 1
- secretOrPrivateKey has a minimum key size of 2048 bits for RS256 after upgrade to nest/jwt 10.0.2 HOT 1
- How to invalidate a token? HOT 2
- BigInt not supported HOT 1
- type error while using `expiresIn` in `signAsync` HOT 7
- Expose internal Jsonwebtoken errors from @Next/jwt HOT 1
- Issue: Missing 'requestProperty' in @nestjs/jwt Library HOT 1
- JsonWebTokenError: secretOrPublicKey must be an asymmetric key when using RS256 HOT 1
- Error: secretOrPrivateKey must have a value HOT 1
- No valid invalid token for verification HOT 2
- wrong signature for sign() HOT 1
- Unexpected behavior when getting a value from .env file for expiresIn property via the ConfigModule / ConfigService HOT 1
- Can not import JwtService, JwtModule after installed
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jwt.