My current setup is Node, Express, Mongo DB, and jsonwebtoken for authentication. I have authentication working fine through the REST API (for mobile application use). The problem: the front end is not a SPA, it is rendered using a templating engine (EJS).My current train of thought is to also use JWT for the EJS front end and send the JWT through the header. Is this bad practice? Should I use sessions for the EJS portion and JWT for the mobile app portion?
Submitted September 24, 2019 at 01:50AM by fishingBakersfield
No comments:
Post a Comment