Skip to main content
Software Engineering

Questions tagged [tokens]

Ask Question

The tag has no summary.

10 questions
Newest Active Bountied Unanswered
1 vote
1 answer
297 views

By saving the RefreshToken in an HTTP-only cookie it cannot be accessed or manipulated by JavaScript, but will be sent with each request with a greater risk of being intercepted. When saving the ...
Bruno Nobre's user avatar
  • 19
1 vote
4 answers
743 views

In a web application with a frontend and a backend part, how exactly is the cancellation token mechanism implemented over HTTP? HTTP is a stateless protocol and it does not allow "sharing" ...
Val's user avatar
  • 177
0 votes
2 answers
174 views

I have a scenario I am considering, and I don't quite find out what's the best solution with OAuth. Hopefully I can learn good things here. We are company A and we specialize in managing secure text ...
diegosasw's user avatar
  • 407
0 votes
1 answer
1k views

Background I am building a web app that allows the user to integrate with multiple services like Google, Twitter, Github etc. using OAuth2.0. Currently, I retrieve the refresh token on sign-in to ...
shoaib30's user avatar
  • 101
1 vote
1 answer
2k views

We have a Web server (which also does authentication and authorization) that manages, via an API, one or more servers that contain highly sensitive data. In the below architecture diagram, we manage ...
Matthew Knill's user avatar
  • 493