jwt token in response body (!1) · Merge requests · tango-controls / Web / Taranta Auth

Jonas Rosenqvist requested to merge groups_and_response_body into develop Oct 18, 2019

POST requests to /auth/login has previously responded with only a response cookie containing the jwt token. Older versions of firefox ignores this cookie completely. This merge requests also adds the same jwt token as the response body.

This merge request also includes an unrelated change: calls to /user now returns the entire decoded jwt token, not just the username.

jwt token in response body

Merge request reports