#JWT secrets

1 messages · Page 1 of 1 (latest)

manic pollen
#

Where can I find the secret to verify a JWT token ?

lime raven
#

Thinks that you can't via API, appwrite validate JWT on his own

#

If you can access MariaDB, you can access secret fields on session table, like

{
    "data": "cI3VEjVgLn4X9fTZ9fqQtHuSLZkV6UrtEuxoA8AMS/8Q4LesSJistkag8fjYwtRXGhDnCUSgMj+SbkoyYJXq1g==",
    "method": "aes-128-gcm",
    "iv": "ddc5a356a6f7fcc67566db4c",
    "tag": "17d14e16609d19c82d591413109ab076",
    "version": "1"
}
manic pollen
#

Ok, thanks. What a pity this could have been very useful to mix several backend.