takes/src/main/java/org/takes/facets/auth/social/PsLinkedin.java token verify #1366
Comments
|
@Akvadevka you are right, but what can we do in this case? We simply fail with an exception and it's up to the user what to do: relogin again or just stop. |
|
@yegor256 You can refresh the token. If refreshing is not possible, explicitly inform the user about the need to re-login instead of throwing an unhandled exception |
|
@Akvadevka we can't refresh inside the framework. It's only the web app can do, but catching the exception and then making a new request to LinkedIn server. Takes is a framework, not an app by itself. We can't be so pro-active in what we do. |
|
Ok, i see |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
@yegor256 can you check, please
Here the token is used directly to retrieve user information without verifying its validity or expiration. If the token is expired or revoked, the code will simply throw an error without attempting to refresh the token or handle the situation in any way.
takes/src/main/java/org/takes/facets/auth/social/PsLinkedin.java
Line 138 in 2f7bc6c
The text was updated successfully, but these errors were encountered: