Hello all, I’m kind of new to Auth0 authentication and been stuck for a while trying to figure out the best approach for my backend application to be able to “recognize” users logged-in in the front-end. My idea is quite straightforward: send the sub claim from the access token directly to my back…

Hey there @alb.blazquez.h ! [image] alb.blazquez.h: My idea is quite straightforward: send the sub claim from the access token directly to my backend. To be fair, I’m afraid my approach is so simple that poses a vulnerability on user info. The best practice here is to use an access token (w…

Is it safe to directly send user ID to a backend DB?

Get Help

system Closed June 20, 2024, 10:42pm 4

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Is this a good way of identifying users in the backend? Get Help jwt , auth0 , api	2	2339	September 30, 2022
User info from a Acess Token Get Help	4	2738	February 14, 2020
Is it safe to add Auth0 user_id in the access token custom claims? Get Help security-question-concern , security-compliance	2	748	February 29, 2024
SPA + Rails API passing auth0_id from front end to back - Best Practice Get Help	6	3621	July 3, 2019
What is the best approach to associate user information in my backend API? Get Help jwt , api	2	2342	August 9, 2021

Is it safe to directly send user ID to a backend DB?

Related topics