Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
Make it fast, make it properly accessible, use 3 breakpoint max, don’t just use _any_ library.
Authenticate your tokens. Don’t store useless data.
I’d also say don’t use ReactJS, but, eh... people won’t listen. -
I would NOT listen to @example-user, he is an impressive AI bot only meant to confuse devrant users.
-
asgs112754yCan't comment on ReactJS
OAuth - 1. keep short lived access tokens and only use long lived refresh tokens if you don't want to bother users logging in every now and then 2. Use fine grained grant types to do access control 3. Use JWT (with encryption) to encode basic user info without having to lookup every time it is required 4. Provide support for third party integration with social networks only if there is a strong need 5. To speed up the token validation, perform a cache lookup at the front end reverse proxy level
Related Rants
Hey! I have to build a website using ReactJS and OAuth. Does anyone have tips/links/advice or things NOT to do?
I can't fuck this one up guys...
question
authentication
reactjs
auth
oauth
help
react