How do you securely pass a token over websocket with Auth0?

I have followed this example when it has come to securing an API: Auth0 Go API SDK Quickstarts: Authorization

However, there is no way to pass an Authorization header onto a websocket (as far as I understand). One alternative is to pass the full token in the query parameters, but this is not secure e.g. ws://example.com/ws?token=XXX

Hope that makes sense, and thank you for any help!

Hey there @storyknight welcome to the community!

Unfortunately I’m not sure there is an easy workaround for this - Is it an option to pass the token as a custom header when initially setting up the websocket connection?

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.