greyhare
greyhare
Fair enough. Any general ideas on how to approach it? Like where to look for the parts that use MPTT now?
The way things are supposed to work is that you have some other communication channel to JWT-using services, such as a publish-subscribe setup, that would broadcast revoked tokens. Those other...
Right now, I guess the signal could be "blacklist object created"
I haven't used Redis much myself. Can you tell it when to expire an object? If so, then you can just set object expiration time to token expiration time. Also,...
The reason you want a blacklist instead of a whitelist is because it's a much shorter list, and tokens can be removed from the blacklist when they expire. So authentication...