Skip to content

Instantly share code, notes, and snippets.

View Wamy-Dev's full-sized avatar
🛐
It's all I need

Wamy Wamy-Dev

🛐
It's all I need
81 followers · 36 following
  • Wonderland
  • 02:11 (UTC -06:00)
View GitHub Profile
@odrianoaliveira
odrianoaliveira / giscompletion.amazon.com.MD
Last active June 27, 2024 19:30
How-to use the completion.amazon.com API
  • URL: https://completion.amazon.com/api/2017/
  • Resource: suggestions
  • Paramters:
    • session-id: 133-2190809-5709766
    • customer-id: A1CNYR04B8CZOZ
    • request-id: NTH41W0H5GYC8N00NVCS
    • page-type: Gateway
    • lop=en_US
    • site-variant=desktop
  • client-info=amazon-search-ui
@soulmachine
soulmachine / jwt-expiration.md
Last active December 23, 2024 18:11
How to deal with JWT expiration?

First of all, please note that token expiration and revoking are two different things.

  1. Expiration only happens for web apps, not for native mobile apps, because native apps never expire.
  2. Revoking only happens when (1) uses click the logout button on the website or native Apps;(2) users reset their passwords; (3) users revoke their tokens explicitly in the administration panel.

1. How to hadle JWT expiration

A JWT token that never expires is dangerous if the token is stolen then someone can always access the user's data.

Quoted from JWT RFC: