Comments (4)
It also breaks the logout functionality
from jwt-auth.
..... the "diffInRealMinutes" Carbon method is used, I didn't find it anywhere in Carbon's actual Doc
https://github.com/briannesbitt/Carbon/blob/34ccf6f6b49c915421c7886c88c0cb77f3ebbfd2/src/Carbon/Traits/Date.php#L2595
the "diffInRealMinutes" is the same as "diffInMinutes"
from jwt-auth.
please how does the token invalidate works , do we store them in a table of balcklists or what?
from jwt-auth.
This is my solution and it's work.
- Create some providers to override existing Tymon\JWTAuth\Providers\Storage\Illuminate, let say name it as 'App\Storage\JWTStorage'. See script below.
- Publish jwt configuration
- Edit config/jwt.php and replace 'providers' as
(-) 'storage' => Tymon\JWTAuth\Providers\Storage\Illuminate::class,
(+) 'storage' => App\Storage\JWTStorage::class,
App\Storage\JWTStorage.php script:
namespace App\Storage;
use Tymon\JWTAuth\Providers\Storage\Illuminate;
class JWTStorage extends Illuminate {
public function add($key, $value, $minutes) {
parent::add($key, $value, abs($minutes));
}
}
Since blacklisting/invalidating using cache mechanism, then artisan cache:clear will erase all blacklist entries. To avoid it, we can tweak above script to targeting into another store (example 'redis_blacklist'):
use Illuminate\Contracts\Cache\Repository as CacheContract;
use Tymon\JWTAuth\Providers\Storage\Illuminate;
class JWTStorageProvider extends Illuminate {
protected $cache;
public function __construct(CacheContract $cache) {
$this->cache = cache()->store('redis_blacklist');
}
public function add($key, $value, $minutes) {
parent::add($key, $value, abs($minutes));
}
}
of course the solution above is better solved by jwt-auth, including changing the use of blacklist storage with config/jwt.php.
Just simply do the best, hoping for the best and let God take the rest.
from jwt-auth.
Related Issues (20)
- Method factory on JWTGuard not found
- setSecret method for custom JWT key is not working HOT 1
- Troubleshooting Issues with Laravel Tests and JWT Authentication HOT 2
- Examples for unmentioned routes (like Email Verification) HOT 1
- Followed the Laravel installation and quick start, getting error: "Tymon\\JWTAuth\\JWTGuard::login(): Argument #1 ($user) must be of type Tymon\\JWTAuth\\Contracts\\JWTSubject
- is possible use sap hana obdc with tymondesigns / jwt-auth ?
- Using a string instead of a file path for the `private` property in `jwt.php`.
- Clarification on Refresh Token Behaviour HOT 7
- attempt() never returns null, but returns blank booleans HOT 1
- Laravel 11 requires an update.
- Laravel 11 Compatibility needs nesbot/carbon ^3.0 HOT 1
- Random @deprecated docs
- Not authenticating api.php routes requests. HOT 3
- Duplicate query to blacklisted tokens table
- Error when using the auth()->tokenById($id) function. HOT 1
- Redis connection to store blacklisted jwts HOT 1
- How does the jwt invlalidating works ? HOT 1
- TypeError: Carbon\Carbon::rawAddUnit(): Argument #3 ($value) must be of type int|float, string given, HOT 3
- JWTAuth::getJWTProvider()->setSecret( ... dosent work
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from jwt-auth.