2021-12-16 16:28:20 +01:00
|
|
|
# Authentication
|
|
|
|
|
|
|
|
|
|
Client - Server communicates via API (stateless) so that the old fashioned Session can't be used.
|
|
|
|
|
|
|
|
|
|
To authenticate, the Server sends a JWT to the client which contains medatada.
|
|
|
|
|
|
|
|
|
|
The Token is encoded and only the server can evaluate if the token is valid or has been modified.
|
|
|
|
|
|
|
|
|
|
The Client stores this token in it's local storage, typically in the browser storage.
|
|
|
|
|
|
|
|
|
|
<img src="../img/authentication.png" alt="authentication" width="800"/>
|
|
|
|
|
|
