Where to Store Grant Credentials JWT Client Credentials

Question

Where to Store Grant Credentials JWT Client Credentials

I have a NodeJS Express application that authenticates to an Auth server by providing client credentials. The token used is used to load data from the API.

What is the best practice for storing a token in an application?

Please note that JWT is user independent, as my Express application is a client.

+4

javascript node.js express jwt openid-connect

Timo jokinen Dec 11 '17 at 10:19

source share

2 answers

, .

, : , , JWT.

+2

Pieter Ennes 11 . '17 22:07

Dat tran · Accepted Answer · 2017-12-12T00:53:00+0000

I will keep it in my memory. Usually I will write a singleton module to process it.

auth.js:

class Auth {
    getToken() {
        // check if we has token already and that token isn't expired
        if (this.token && !isExpired(this.token)) {
            return Promise.resolve(this.token);
        }
        // if not we call API for the new token then return the new token
        return asyncCallApiForToken();
    }
}
module.exports = new Auth();

main.js

const auth = require('./auth.js)

auth.getToken()
    .then(token => {
        // we got token here
    }

Where to Store Grant Credentials JWT Client Credentials

More articles: