docker run -p 8000:8000 --rm $(docker build -q .)JWTfor stateless authentication.- Refresh token in http only cookie for session persistence
- Deno for testing purposes, also, having TypeScript by default is pretty neat
- Using in memory Object as DB for the reduced complexity
Reactspa- use local storage with username as a proxy for the refresh token to avoid network calls
- work on edge cases
- Use an actual data base
- remove refresh tokens from device list when exp
- add route to remove refresh tokens manually (i.e logoff remotely)
- add more precise type interfaces
- return proper http error codes
- use SSR?
- isolate authentication in it’s own service