Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How to prevent users with expired JWTs from receiving Firebase Cloud Messaging notifications after automatic logout? #943

Open
putuoka opened this issue Oct 17, 2023 · 0 comments
Open

How to prevent users with expired JWTs from receiving Firebase Cloud Messaging notifications after automatic logout? #943

putuoka opened this issue Oct 17, 2023 · 0 comments

Comments

@putuoka
Copy link

putuoka commented Oct 17, 2023

I have an issue where users whose JWT tokens have expired are still receiving FCM notifications after being automatically logged out.

The problem is the JWT expires and the user is logged out when they open the app and request the backend API which does jwt.verify. But FCM notifications can be sent without opening the app.

For example, if the JWT expires after 1 minute when the user logs in, and the user doesn't open the app again for 1 hour/1 day, their FCM token is still active because there was no logout action since they logged in.

So when a notification is sent, and the user opens it, they get redirected to the app and are automatically logged out. But they shouldn't have received the notification in the first place.

How can I prevent users with expired JWTs from receiving FCM notifications after automatic logout? Any suggestions would be appreciated!
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@putuoka