I am building a token-authentication system for a mobile backend with Rails. I understand there is devise, but our auth path is kind like different so I build it from scratch. Just curious, when a user log out. What should happen to the token in Mobile end and Server end. <ol> <li>Should the token in mobile end be deleted?</li> <li>Should the token in server end be deleted? And a new will be generated when this user logged in again.</li> </ol> Thanks!

Token Authentication Logout: should I delete the token?

1 Answers

the token is unique by user and it used to identify the user ,so you don't delete it after logout ,for mobile you may save it to cookies to enable something like remember me but on the server you don't need to delete it

157

answered Oct 28 '22 14:10

Remon Amin

Recent Activity
Apple Pay - authorize.net returns error 153 only when live, sandbox works
How to continue cursor loop even error occured in the loop
python find all neighbours of a given node in a list of lists
Fatal error: Call to a member function setColumn() on a non-object in Magento
Count how many of each value from a field with MySQL and PHP
Python 32-bit development on 64-bit Windows [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

Token Authentication Logout: should I delete the token?

Tags:

authentication

ruby-on-rails

access-token

devise

api

Yan Zhao

1 Answers

Remon Amin

Recent Activity

Donate For Us

Token Authentication Logout: should I delete the token?

Tags:

authentication

ruby-on-rails

access-token

devise

api

Yan Zhao

1 Answers

Remon Amin

Related questions

Recent Activity

Donate For Us