This is a very usefull tutorial. I have implemented this in our prototype project but one of my colleague is complaining when the page is refreshed the user is being signed out so he implemented saving the token in the local storage. Am I right that the implementation is SPA so page reload is not needed but how did you circumvent when users try to refresh the page?
Thanks for this tutorial!
Never save the token in the local storage, if you do, you are exposing your app to potential attacks. If you are using Nuxt.js, you should simply make plugin and put this
exportdefaultfunction({store}){window.onNuxtReady(()=>{// refresh the token});}
As stated in the Nuxt.js docs for the plugin:
Nuxt.js allows you to define JavaScript plugins to be run before instantiating the root Vue.js Application.
If you are using some other JS library, check their doocumentation and see how can you run some function before instantiating the root app.
Hi, this is a really great tutorial, any chance you would go into this part in a bit more detail, with refreshing the token in window.onNuxtReady()? I did a version which checks if x-access-token is set similar to the middleware, and then does router push to '/', but it's quite choppy and not sure how secure. Would be a nice addition to the post. Thanks!!!
Once a user has logged in, you should put user_id in the cookies. Then make a plugin that will check if the user exists and x-access-token does not exist, if these conditions are true, then you should dispatch an action to refresh the token.
This is a very usefull tutorial. I have implemented this in our prototype project but one of my colleague is complaining when the page is refreshed the user is being signed out so he implemented saving the token in the local storage. Am I right that the implementation is SPA so page reload is not needed but how did you circumvent when users try to refresh the page?
Thanks for this tutorial!
Never save the token in the local storage, if you do, you are exposing your app to potential attacks. If you are using Nuxt.js, you should simply make plugin and put this
As stated in the Nuxt.js docs for the plugin:
If you are using some other JS library, check their doocumentation and see how can you run some function before instantiating the root app.
Hi, this is a really great tutorial, any chance you would go into this part in a bit more detail, with refreshing the token in window.onNuxtReady()? I did a version which checks if x-access-token is set similar to the middleware, and then does router push to '/', but it's quite choppy and not sure how secure. Would be a nice addition to the post. Thanks!!!
I'm not sure if that requires whole new post, but maybe I'll do part 2 in addition to this post. Basically what you need to do is this:
window.onNuxtReady()
check if user is set in the vuex AND there isn't x-access-token in the cookiesI'd love to see how you apply it on code - having the same issues right now more or less. I want the user to stay logged on refresh.
I am also got the similar error, get logout everytime i do a refresh, any option ?
Once a user has logged in, you should put
user_id
in the cookies. Then make a plugin that will check if the user exists andx-access-token
does not exist, if these conditions are true, then you should dispatch an action to refresh the token.This doesn't seem to work for me, does this work for anyone else? It STILL signs me out every time I refresh the page. very annoying