Comments (5)
pajasevi
commented on August 17, 2024
I think what might be the issue: along with refresh token in request body, there was also access token present in request header using Bearer scheme.
from samourai-dojo.
LaurentMT
commented on August 17, 2024
Your observation is correct. If the request has an "Authorization" header, the /auth/refresh endpoint expects that this header stores the refresh token, not the authentication token (that is not required by this endpoint).
from samourai-dojo.
pajasevi
commented on August 17, 2024
Well, this behavior seems kinda non-standard to me.
Standard behavior would be calling the refresh endpoint with refresh token in request body and access token in Authorization header - and this endpoint should return both new access token and new refresh token.
from samourai-dojo.
LaurentMT
commented on August 17, 2024
The Access Token isn't required (nor expected) by the /auth/refresh endpoint (see https://github.com/Samourai-Wallet/samourai-dojo/blob/develop/doc/POST_auth_refresh.md)
The idea is that when the user authenticates to Dojo, it receives an Access Token (valid for 15 mn) and a Refresh Token (valid for 120 mn).
The /auth/refresh endpoint allows to generate a new valid Access Token (even if the previous one has expired). The only requirement is that the Refresh Token is still valid. Generation of a new Refresh Token can only be done by a new manual authentication.
from samourai-dojo.
pajasevi
commented on August 17, 2024
Okay, thanks for clearing that out 👍
from samourai-dojo.
Related Issues (20)
- BTCPayServer-Docker integration HOT 3
- External bticoind not tracking new blocks HOT 10
- my-dojo tracker stops adding blocks and the db container shows connection abortion error HOT 6
- Failed import/rescan of unconfirmed transactions
- Maintenance Tool - XPUB & ADDRESS INFO check return NO tx & balance
- Dojo can't start after update HOT 1
- Add the option to use an Electrum server as a backend HOT 1
- Remove/uninstall btc-rpc-explorer HOT 4
- Add Dojo version number to admin UI HOT 1
- Change to doc/DOCKER_setup.md
- Make node services listen on localhost only by default HOT 1
- Avoid printing xpubs in the logs HOT 1
- ECONNREFUSED from external bitcoind HOT 2
- Can I change the password on the explorer service? HOT 2
- Dojo tracker no working on MyNode HOT 1
- Unable to connect to Dojo HOT 1
- Upgrade to version 1.18.0 fails
- Using Dojo with Electrum Personal Server HOT 2
- Add option --nolog to dojo.sh install command
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from samourai-dojo.