Fastapi: how to implement logout and refresh token

Created on 26 Sep 2020  路  3Comments  路  Source: tiangolo/fastapi

I am new to backend development I searched a lot for how to Implement logout but didn't find the way

question
Source
picture abdalla19977
👍1

Most helpful comment

Yeah, with the suggested way from @Yeganloo the token would be still valid. if you want to make a real logout you have to create a token blacklist and check in your auth dependency if the token has been revoked.

picture SebastianLuebke on 29 Sep 2020
👍41

All 3 comments

When you use JWT, Logout have to be implement in front-end and fast-api has nothing to do with it.
Implement your refresh token in an put API.

Yeganloo picture Yeganloo on 27 Sep 2020
1

so is it okay if u logged out u can still use ur token?

abdalla19977 picture abdalla19977 on 27 Sep 2020

Yeah, with the suggested way from @Yeganloo the token would be still valid. if you want to make a real logout you have to create a token blacklist and check in your auth dependency if the token has been revoked.

SebastianLuebke picture SebastianLuebke on 29 Sep 2020
👍41
Was this page helpful?
0 / 5 - 0 ratings

Related issues

laith43d picture laith43d  路  3Comments
RogerioDosSantos picture RogerioDosSantos  路  3Comments
vnwarrior picture vnwarrior  路  3Comments
danielgtaylor picture danielgtaylor  路  3Comments
cjw296 picture cjw296  路  3Comments