Payload Authentication #14632
Unanswered
zeaiter-squared
asked this question in
Q&A
Payload Authentication
#14632
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
I am working on a Payload project that has two authentication methods. The first is OAuth and the second is API key. The OAuth is a custom implementation and the the API key is the built-in implementation.
We have noticed that payload will constantly ping
/api/users/refresh-tokenwhen in the CMS dashboard. This will refresh thepayload-tokencookie which appears to be a JWT. Is this part of the built-in JWT authentication that PayloadCMS provides? If so, is it possible to remove this and no longer have apayload-tokenbeing sent to the client?I have tried using the
removeTokenFromResponsesoption in theauthcollection config with no success.Beta Was this translation helpful? Give feedback.
All reactions