Conitnuos Loop of JWT authentication when invalid JWT is given


(Ravikanth) #1

Hello,

We are doing some tests of passing invalid JWT (expired token, non existing user field in the json). The login screen is getting 403 error which is good, but the screen seems to flickering with continous login requests being sent to the backend. This is going to be a severe issue if we are going to adapt the plugin for our production. Anything i need to do to disable this continous loop of authentications being sent to the backend.

I am logging in via the URL like below

https://10.95.101.140/login?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpYXQiOjE1NDg2MTY3NjcsImV4cCI6MTU0ODYxNzA2NywiY3VzdG9tZXJpZCI6ImZmMzA0YTU5LTA3MzktNDM1OC1hODcwLTJhMTlhMmFmNzc0NyIsInJvbGVzIjoid3JpdGVyIn0.9BFuHBZlSF6yXZYiyw0Srpw6jie-BQ4EBE95khany0k


(Simone Scarduzio) #2

Well spotted, will take care of this!


(Ravikanth) #3

Hello Simone,

Just wanted to check if this is addressed in the readonlyrest-1.16.34_es6.5.4?

Tanks,
Ravikanth


(Simone Scarduzio) #4

Yes it should, please try.


(Ravikanth) #5

Great. once i get the installation issues resolved, will try it out.