Reputation: 1
Location to save api token?
I'm not sure which is gonna be the best location to save API key which users generating by providing email address and password, right now I'm finding temporary direction on their machine and saving it there.
But I'm not sure if it is the best approach.
Notes:
API key has to be regenerated every 6 or 12 hours (depends).
I can't save it in the cache memory, because API endpoint which returning API key for another endpoint (which requires email and password) is rate-limited by 5 requests a day.
Upvotes: 0
Views: 547
Answers (2)
Reputation: 508
You could use local storage.
See https://www.w3schools.com/html/html5_webstorage.asp
Upvotes: 0
Reputation: 8065
You have to create an express-session: https://www.npmjs.com/package/express-sessions
Store Session:
let session = require("express-session");
app.use(session({
secret: "secret",
resave: false,
saveUninitialized: true,
cookie: {secure: true,
httpOnly: true,
maxAge: 1000 * 60 * 60 * 24
}
}));
Use:
router.route("/login")
.post(function(req, res) {
req.session.Auth = req.body.user // => user values?
})
Upvotes: 1
Related Questions
- Where should I save jwt refresh token?
- Where should you store oAuth token data in a node.js app
- Where to store API (Paypal) access tokens on the server side (node.js)
- Where to store a JWT token locally on computer?
- Where should I save client's JWT for future requests?
- Javascript: Sent ajax request to login api -- where to save token?
- NodeJs JWT token storing
- Where should I store jwt token for authentication on server side
- Where does json web token save the data?
- How should I store a token generated by a RESTful API?