Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

cookies vs bearer tokens #5

Open
Trolldemorted opened this issue Jan 15, 2020 · 5 comments
Open

cookies vs bearer tokens #5

Trolldemorted opened this issue Jan 15, 2020 · 5 comments
Assignees
Labels
help wanted Extra attention is needed

Comments

@Trolldemorted
Copy link
Member

Is there a reason to prefer cookies over bearer tokens?

@Trolldemorted Trolldemorted added the help wanted Extra attention is needed label Jan 15, 2020
@Trolldemorted
Copy link
Member Author

cc @domenukk @gehaxelt high priests of http please enlighten me!

@gehaxelt
Copy link
Member

For what exactly? Authentication?

@domenukk
Copy link
Member

Vorteil Bearer token: kein CSRF token nötig
Vorteil cookies: auch normale non-javascript requests können authentifiziert werden, nach refresh noch da
Kannst bearer token natürlich auch persistent abspeichern. Oder n cookie zum token holen...

@domenukk
Copy link
Member

Tl;DR
Both are fine, but have slightly different use cases.
bearer token are more "hip", together with jwt.

@Trolldemorted
Copy link
Member Author

Thanks, I'll see whether we can switch to bearer tokens!

@Trolldemorted Trolldemorted self-assigned this Jan 18, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
help wanted Extra attention is needed
Projects
None yet
Development

No branches or pull requests

3 participants