Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How does Sliding Token make the backend less performant? #738

Open
zzhangJ opened this issue Aug 10, 2023 · 1 comment
Open

How does Sliding Token make the backend less performant? #738

zzhangJ opened this issue Aug 10, 2023 · 1 comment
Labels
duplicate question

Comments

@zzhangJ
Copy link

zzhangJ commented Aug 10, 2023
edited

Quote from the documentation about Sliding tokens:

"...less secure and, in the case that the blacklist app is being used, less performant."

Later it says:

"...if you are using the blacklist app, Simple JWT will validate all sliding tokens against the blacklist for each authenticated request. This will reduce the performance of authenticated API views."

What does it mean it will validate all sliding tokens? I thought the view only needs to validate the sliding token that is in the request against the blacklist data table, and the impact on performance would be the same whether it is a sliding token or a fresh token.

Correct me if I'm wrong.
@Andrew-Chen-Wang
Copy link
Member

Sliding token is a little iffy and discussed in #154 The problem is that a sliding token is continuously validated with a "weird auth" mechanism that can cause it to be less performant. Would advise reading the thread.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
duplicate question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Andrew-Chen-Wang @zzhangJ