TechQA.

How to secure JWT token

32 views Asked by At

If a token is stored in the local storage or a cookie, another user might be able to copy the token from one PC and use it on their own PC. How can this security issue be addressed?

I want user not access or copy our jwt Token and use it in another pc

security jwt postman token access-token
Original Q&A
1

There are 1 answers

1
congacon On

As far as I know perfect solution does not exist. You could try to get some unique info on user’s machine to be included in JWT. But that is not always doable, and it might affect user experience. Here is some option you could try:

  • IP address: if IP address was changed, ask user to login again
  • User agent: same as IP address
  • Geolocation

Related Questions in SECURITY

Related Questions in JWT

Related Questions in POSTMAN

Related Questions in TOKEN

Related Questions in ACCESS-TOKEN

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json

Trending Questions