You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Should you always extend the session lifetime in all API endpoints (that requires session authentication) or should you only do it in specific endpoints e.g. /api/auth/session?
I'm using GraphQL where your API is divided into queries and mutations and you're only supposed to mutate the database in mutations. But this means that queries that needs authentication can potentially mutate the database, so I'm not sure if this is a good approach.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Should you always extend the session lifetime in all API endpoints (that requires session authentication) or should you only do it in specific endpoints e.g.
/api/auth/session?I'm using GraphQL where your API is divided into queries and mutations and you're only supposed to mutate the database in mutations. But this means that queries that needs authentication can potentially mutate the database, so I'm not sure if this is a good approach.
Beta Was this translation helpful? Give feedback.
All reactions