In my project I am using Hapi to build my API. I am looking for the best way to secure some of the API endpoints.Every tutorial I've found on the subject says to use JWT. But I'm not sure if that is the best fit for me.The protected routes will be for an "admin" user. And since JWTs expire quickly (for security reasons). I wouldn't want my user having to login repeatedly. So does anyone have any recommendations for how I can handle this?
Submitted September 15, 2017 at 09:40PM by whostolemyusrname
No comments:
Post a Comment