I’m evaluating whether to use Ionic’s cloud Auth service and it seems like it’s relatively easy to implement client-side, where you can check this.auth.isAuthenticated. You can also set the user info from the client side as well.
However, if I want to do check their identity server-side, such as check that a user is authenticated when they call my custom api to post a comment - how can I get some sort of token (preferably a JWT token) that I can use to validate their identity server-side? Assuming we are using email/password authentication.
Also - using their send notification on a user’s birthday example, how can I query the user data in ionic cloud’s database to say find all users who have a birthday today. Can I export out the user data in any way if I want to migrate away in the future?
I am interested in this. Also interested in how Ionic Cloud Auth might handle native GoogleAuth server-side authentication. With the cordova plugin, theoretically you can log in with an ‘offline’: ‘true’ option and get an AuthToken that can be traded for an access token on the server side. But that doesn’t seem to be implemented in Ionic Cloud Auth…
I would even settle for Ionic AuthCodes that could then check back in with Ionic Cloud to verify Ionic auth. Then you could ignore all the provider-specific auth flows and just rely on Ionic to verify your user-base.
I’m also interested. For Ionic Auth to be useful, there needs to be some server-side method of validating the user’s JWT.
I can only assume from experimentation the JWT ionic auth provides to the client is signed with a 3rd token as my API token cannot validate the user JWT with any of ‘HS256’, ‘HS384’, ‘HS512’ or ‘RS256’.
I need to validate Ionic Auth JWT provided to Client on the server as this can be done quickly rather than having to make a call out to Ionic Auth to verify the UID.