Should I make authentication request for every single page in app?
up vote
0
down vote
favorite
I am building application where I save JWT in cookies. The way I save JWT in cookies is secure, so I can't check it using JS script but only via http call. So when server returns my JWT from my cookies, I save it in store, but problem is when I refresh page. So there is my question.. imagine I enter web page in my app where I make no http request at all, but site header should be modified weather I am authorized or not. so should I make http call to check my JWT in cookies for every single page even though I make no request? or should I check JWT only during requests? in simple words should I make additional requests to check my JWT?
http security authentication cookies jwt
share | improve th...