Reputation: 261
Why to use Passport.js along with jwt to authenticate user when we can do this jwt alone
I have seen multiple online tutorial which are using Passport.js along with json web token for authentication purpose. My question is why we needs to use passport.js when we can use only use jwt to create and authenticate a token. To create Token : jwt.sign() To Verify Token :jwt.verify()
Upvotes: 0
Views: 919
Answers (1)
Reputation: 38
Heya! so JWT and Passport.js both have separate purposes. JWT is a middleware that deals with authorization, whereas Passport.js handles authentication (login/logout)
A JsonWebToken (JWT) is generated after authentication & is sent to the client, in which the client will return the JWT with each HTTP request to be validated to grant access to resources.
Since they are not equal and each has a separate purpose, there is no reason to choose one over the other. They do, however, work well together to give your express web application a robust mode of access control.
Hope that was helpful!
Upvotes: 2
Related Questions
- Why using passport local strategy coupled with jwt strategy
- Doubts on Authentication Techniques - Passport
- How to correctly use the authentication for nodeJs API using JWT and Passport?
- Passport jwt vs passport local session
- When to use passport.js?
- Nodejs API - Authentication with Passport JWT strategy vs jsonwebtoken
- is passport required when using JWT
- Why would I need to use passport package with jsonwebtoken for applying token based authentication on a NodeJs web API?
- What is an authentication strategy
- Passport JWT & Authorize vs Authenticate