0

I'm working on a flask web application using flask-login for user authentication. Now the current layout is going through some changes and it was decided that some of the components should obtain data from the server in order to update on user request. I intended to create some api routes but I'm not sure how should I now handle user authentication accessing these routes. I'll be happy to hear what's the best practice in these cases.

Thanks

user4731309
  • 1
  • Two options really, look up authorization code flow and implicit grant flow. – evilSnobu Sep 18 '19 at 06:13
  • Is there a standard way of implementing the authorization code flow based on flask-login? I thought of creating an api authorization route - returning a jwt for logged in users to be used for the api auth. does it make sense? – user4731309 Sep 18 '19 at 08:32

0 Answers0