If the password is not stored in the token, send the token to the backstage, how can the backstage verify its legitimacy?

do you store token directly in redis or database, and the backend accepts token to use token instead of password authentication?

Apr.26,2021

token just store the user information. The backend verifies according to the user information


token itself is valid. Only after verification will it be given to token,. Just go to the background to verify token


can be simply understood as token = obfuscation / encryption (user id + password)
so the front end changes the user name and password with the back end for a token. This token contains the user name and password
, so token is a legitimate ID issued by the backend

.
MySQL Query : SELECT * FROM `codeshelper`.`v9_news` WHERE status=99 AND catid='6' ORDER BY rand() LIMIT 5
MySQL Error : Disk full (/tmp/#sql-temptable-64f5-1b36d62-2c02a.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
MySQL Errno : 1021
Message : Disk full (/tmp/#sql-temptable-64f5-1b36d62-2c02a.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
Need Help?