I’ve spent some time studying about this, and I do know it is a widespread subject, however I hoped to get some suggestions on my authentication method.
I’ve an SPA. It must authenticate to 1) my utility backend and a pair of) some APIs on AWS. I am utilizing cognito to authenticate consumer credentials.
My thought on approaching that is as follows:
- Person authenticates through AWS Cognito API
- Receives JWT
- Retains JWT in reminiscence solely (no native storage — XSS)
- Passes JWT to utility backend
- Backend units HTTP-only safe cookie on the shopper, STORING the JWT inside this cookie.
- Cookie is used to take care of classes with the app backend
- In-memory JWT is used to authenticate with AWS APIs
That is fine-and-dandy, however when the consumer closes browser or switches tabs, they will not have the JWT in reminiscence. Nonetheless, they will nonetheless have the session cookie. So my thought is that it’ll ask the applying server for the JWT (contained in the cookie) earlier than hitting the AWS APIs.
On this style, I’ve a safe HTTP-only cookie that maintains classes with my app server, and I even have the JWT to authenticate with the AWS APIs. If the consumer has a sound session cookie, it means they need to allowed to have the JWT contained inside it.
My solely concern with that is that it appears slightly round. JWT authenticates to obtain cookie, which authenticates sooner or later to obtain a refreshed JWT. In any other case, I feel it appears fairly strong.
Ideas?
Best Quality Private Proxies by Proxyti:
fully anonymous
100% anonymous and safe reliable private proxies
1,000 mb/s speed
Blazing fast proxy servers with up to 1,000 mb/s speed
Elite quality
Best quality proxies from world and USA locations
Unlimited bandwidth
No limits of using your proxies - truly unlimited bandwidth
Buy Now - Get 2X More Proxies:
100 Private Proxies
$30/month
200 Private Proxies
$50/month
500 Private Proxies
$100/month
1,000 Private Proxies
$180/month
2,000 Private Proxies
$340/month
5,000 Private Proxies
$750/month
Our Unbeatable Proxy Features:
Anonymous Proxies
100% security with our proxies – anonymous and secure proxy experience
Ultra Fast Speed
Proxyti offers up to 1,000 mb/s ultra fast proxy speed – feel the real power!
Unlimited Bandwidth
No data limits for your proxies – truly unlimited proxy bandwidth for you!
Proxy Authentication
We secure proxies with IP authentication – use your proxies with your own IP
Elite Quality
Highest proxy quality guarantee with supported HTTP/HTTPS and SOCKS connections
Great Prices
Proxyti offers great proxies for great prices – this is what we call new proxy era!
USA Locations
You can choose USA or random proxies locations when ordering for free
No Limitations
We don’t have any limits – you can use your proxies with every software or program!
Lots Of Subnets
The more proxies you buy, the more subnets you get – it is worth ordering more!
Semi Dedicated
Our proxies are shared with maximum of 5 users at a time, but they are still anonymous
Fast Delivery
We deliver your ordered proxies in your email in .txt file – this is simple as that
Awesome Support
Have any questions or want more information – please contact us anytime!
