Offer JWT Support
complete
Duncan Hamra
Please answer the following Q's in a comment so we can effectively plan/prioritize this feature.
1) What problem are you trying to solve → Receive a JWT or something and then hit Memberstack to confirm the authentication.
2) Why is this important →
3) What's your plan B →
4) Possible solutions we could build for you →
Naitik Mehta
complete
We currently do offer JWT tokens for Memberstack 1.0. You can view our documentation on this here: Verifying Memberstack tokens 😊
Naitik Mehta
under review
MS Bot
Migrated from the old community forum 👇👇👇
-------------
Zac Holland | Jan
I’m developing a SaaS app with Webflow and am considering using Memberstack for authentication. I also need to make calls to my own API though.
Is this possible? I need to be able to receive a JWT or something and then hit Memberstack to confirm the authentication. If there is no solution to this I sadly won’t be able to use MS but I want to very bad. It looks like a great solution
Zac Holland | Jan
Hey!
I want to be able to use MemberStack in webflow to solve my authentication and membership issues on the front end. This is the generic use case for MS.
I also need to be able to get an API call on my backend with some sort of token (JWT is commonly used), and then be able to hit a MS API to validate the token. This is what Firebase does 7 which allows me to use Firebase authentication independently from their real time database so I do this exactly.
To go a bit further in depth there, I use Firebase’s JS library on the front end to sign users in and handle authentication on the website. I then wanted to let the users hit my API so each API call takes an auth token, and I used their Go library 1 to validate the token.
Hopefully that’s enough info, but let me know if you have any more questions. To sum it up, without this functionality I’ll be completely blocking myself from developing my own APIs if I choose to use MemberStack, which is necessary for my use case.
Adam Gustavsson | Apr
I’m also looking for this solution. My webapp accessed by a membership. The value of the app is that a page calls an API (that I built) that returns information.
As I understand Memberstack I can protect the page so that it redirects to a login page if the user is not logged in.
What I worry about is that some tech savvy user can just log in, save a copy of my page, remove the memberstack js, and then use my service for free.
In the backend code of the API i would like to be able to verify that the call was made by a logged in paying member.
I really like what you have created and I think it has great potential but without a solution for the described problem I’m not able to use it. (Except perhaps during the period I run beta testing on my app.)
--------------------