I am using Auth 0 for user authentication with React native.
In addition, Node.js (Express) is used for API on the server side.
-
For the implementation of React native, we have looked at the following.
Auth0 React Native SDK Quickstarts: Login -
For server side implementation, we have looked at the following.
Auth0 Node (Express) API SDK Quickstarts: Authorization
We created and authenticated users from mobile applications and succeeded in verifying JWT on the server side.
However, it is not supported when you invalidate the user from the console screen of Auth 0 or when it is unconfirmed by mail address authentication.
Even in this case, JWT verification is possible on the server side, so it passes authentication.
In order to deal with this case, I think that it is necessary to make a request to the API of Auth 0 and check it.
For example, /userinfo
endpoint.
Is my implementation considered generic?
Are there any reference page?