So I am working to implement a sign with Auth0 where we are using auth0.js WebAuth.login() with email and password against a database to login. This much of it works. But how do refresh tokens work? Everywhere I look I see that refresh tokens can only be used in instances where the WebAuth.authenti…

[image] cthomas: But the webAuth.login() with password grant doesn’t run a session on auth0 servers, There is no session cookie that is created with this flow, that is correct. [image] cthomas: I’m under the impression that refresh tokens only work with sessions started under auth0’s log…

How to use refresh tokens with a self-hosted login

Get Help

dan.woda January 20, 2022, 10:47pm 5

Which part? The security risks or how to implement?

Topic		Replies	Views
How to refresh tokens in JS web app, when not using Hosted Login Page? Get Help refresh-tokens , tokens	2	4250	March 2, 2018
Considerations on the refresh token Get Help refresh-tokens	5	4208	April 14, 2020
Best practice with a custom authentication flow Get Help	9	4590	September 11, 2020
Refresh token for embedded login using auth0-js Get Help	0	1335	September 15, 2022
Using the Auth0 apis to sign up, log in and refresh a token Get Help	2	1873	December 22, 2022

How to use refresh tokens with a self-hosted login

Related topics