where to send JWT ? | NestJS | Page 1

stable smelt May 28, 2023, 10:06 AM

#

Hi guys I am wondering where should I send the Tokens to ?
Body
{"IamToken":"value"}

Query Params
/test?IamToken=value

Params
/test/IamToken

and the token I mean for those stuff
Reset Password
Activate User by email
etc..

zinc mist May 28, 2023, 10:17 AM

#

Usually in the Authorization header in the format bearer <the token>

#

That's pretty much the standard. You can google for "bearer token" if you want more information

stable smelt May 28, 2023, 10:21 AM

#

zinc mist That's pretty much the standard. You can google for "bearer token" if you want m...

But i didnt mean the auth token

zinc mist May 28, 2023, 10:22 AM

#

Oh, then that's not really standardized in any way. We used body in a previous project, because you can say it's the actual payload of the request and not just some additinal metadata

#

But if you want to use a link from email for example, then your only option is the query or params. Query is better in this situation, because it's encrypted on the transport layer with TLS, while the url is not

stable smelt May 28, 2023, 10:40 AM

#

zinc mist But if you want to use a link from email for example, then your only option is t...

Even if its from email I am redirecting to the frontend

#

and then request

#

to backend

zinc mist May 28, 2023, 10:42 AM

#

The url before the query string still travels over the network unencrypted so the routers know where to route it.

#where to send JWT ?