Skip to content

[Authorization] Implement User Sign Out #19

Description

@mehalyna

Objective: Allow users to log out (sign out) of the application.

Sub-Tasks:

  1. Invalidate JWT on Sign Out:

    • Since JWTs are stateless, consider strategies for invalidating the token on logout, such as a token blacklist or short token lifespan with refresh tokens.
  2. Create Sign Out API Endpoint (Optional):

    • If implementing a token blacklist, develop an endpoint to add the user’s current token to this list upon logout.
  3. Client-Side Token Deletion:

    • Ensure the client application deletes the token upon user logout for security purposes.

US #1

Metadata

Metadata

Assignees

Labels

Type

No type

Fields

No fields configured for issues without a type.

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions