Access Token ( entry guard )

1 min read
access token is like entry guard it will either you have access or entry card with you if not “unauthorized request“
access token is used to check if user if authenticated or not then give access on secured routes like profile update or send message
access token is mostly stored in form of session cookie in user browser
access has time limit after that they are not valid , here comes in picture the refresh token which just used to reset time limit and generate new access token to user without user need to enter again login via his email and password
access token is generally short lived compare to refresh token
1
Subscribe to my newsletter
Read articles from Mayank Mahajan directly inside your inbox. Subscribe to the newsletter, and don't miss out.
Written by
