Skip to content

Add a column to optionally store the jti of the refresh token used to generate an access token. #136

New issue
New issue
Open
Open
Add a column to optionally store the jti of the refresh token used to generate an access token.#136
Labels
Kind:FeatureLevel:Intermediate
@idyll

Description

@idyll
idyll
opened on Jun 9, 2023

Problem Statement

We're seeing a couple of use cases where we want to revoke a refresh token and any access tokens connected to that refresh token.

We need a way to connect the tokens and then revoke any access tokens that were generated from the refresh token.

Solution Brainstorm

To support this I imagine adding a column to the table that optionally tracks the refresh token. The refresh token could then just cascade delete its dependent tokens.

Thoughts?

It seems like a pretty clean way to revoke a refresh and any access tokens that were made from it...

Metadata

Metadata

Assignees

No one assigned

    Labels

    Kind:FeatureLevel:Intermediate

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions