Access Token ( entry guard )

Mayank MahajanMayank Mahajan
1 min read
  • access token is like entry guard it will either you have access or entry card with you if not “unauthorized request“

  • access token is used to check if user if authenticated or not then give access on secured routes like profile update or send message

  • access token is mostly stored in form of session cookie in user browser

  • access has time limit after that they are not valid , here comes in picture the refresh token which just used to reset time limit and generate new access token to user without user need to enter again login via his email and password

  • access token is generally short lived compare to refresh token

1
Subscribe to my newsletter

Read articles from Mayank Mahajan directly inside your inbox. Subscribe to the newsletter, and don't miss out.

Written by

Mayank Mahajan
Mayank Mahajan