Clojurians Log v2

Clojure programming
Channels
# 100-days-of-code# aatree# admin-announcements# adventofcode# ai# alda# aleph# all-the-channels# announcements# arachne# architecture# asami# atlanta-clojurians# atom-editor# autochrome-github# avi# aws# aws-lambda# babashka# babashka-sci-dev# bangalore-clj# beginners# berlin# biff# bigdata# bitcoin# boot# boot-dev# boulder-clojurians# braid-chat# braveandtrue# brevis# bristol-clojurians# business# calva# capetown# carry# cbus# cestmeetup# chestnut# chlorine-clover# cider# circleci# clara# clj-commons# cljdoc# cljfx# clj-http# clj-kondo# clj-on-windows# cljs-dev# cljs-experience# cljsfiddle# cljsjs# cljsrn# cljtogether# clojars# clojure# clojure-android# clojure-argentina# clojure-art# clojure-austin# clojure-australia# clojure-austria# clojure-bangladesh# clojure-bay-area# clojure-beijing# clojure-belgium# clojure-berlin# clojure-boston# clojure-brasil# clojurebridge# clojurebridge-ams# clojure-canada# clojure-chennai# clojure-chicago# clojure-china# clojure-colombia# clojure-conj# clojurecup# clojure-czech# clojured# clojure-denmark# clojure-denver# clojure-derby# clojuredesign-podcast# clojure-dev# clojure-dusseldorf# clojure-ecuador# clojure-egypt# clojure-estonia# clojure-europe# clojure-filipino# clojure-finland# clojure-france# clojure-gamedev# clojure-germany# clojure-greece# clojure-guangzhou# clojure-hamburg# clojure-hk# clojure-houston# clojure-hungary# clojure-india# clojureindia# clojure-indonesia# clojure-ireland# clojure-israel# clojure-italy# clojure-japan# clojure-kc# clojure-korea# clojure-losangeles# clojure-madison# clojure-mexico# clojure-miami# clojure-mk# clojure-mke# clojure-morsels# clojure-my# clojure-new-zealand# clojure-nl# clojure-nlp# clojure-norway# clojure-poland# clojure-portugal# clojure-provo# clojure-quebec# clojureremote# clojure-romania# clojure-russia# clojure-sanfrancisco# clojurescript# clojurescript-ios# clojure-sdn# clojure-seattle# clojure-serbia# clojure-sg# clojure-shanghai# clojure-spain# clojure-spec# clojuresque# clojure-survey# clojure-sweden# clojure-switzerland# clojure-taiwan# clojure-turkiye# clojure-uk# clojure-ukraine# clojureverse-ops# clojurewerkz# clojurewest# clojurex# clojure-za# clojurian-chat-app# clojutre# cloverage# cloxp# clr# code-art# code-reviews# community-development# component# conf-proposals# conjure# consulting# contributions-welcome# copenhagen-clojurians# core-async# core-logic# core-matrix# core-typed# cryogen# crypto# css# cursive# cz-clojure# d2q# datacrypt# datahike# datalevin# datalog# data-oriented-programming# data-science# datascript# datavis# dato# datomic# defnpodcast# deps-new# depstar# devcards# devops# dirac# docker# docs# domino-clj# duct# dunaj# eastwood# editors# emacs# error-message-catalog# etaoin# ethereum# euroclojure# events# exercism# expound# figwheel# figwheel-main# flambo# fulcro# funcool# functionalprogramming# funimage# garden# ghostwheel# girouette# gis# google-cloud# gorilla# graalvm# graalvm-mobile# graclj# graphql# gratitude# gsoc# hammock-driven-dev# helix# heroku# hispano# holy-lambda# honeysql# hoplon# hugsql# humor# hypercrud# hyperfiddle# immutant# improve-getting-started# incanter# indycljs# inf-clojure# instaparse# integrant# interceptors# interop# introduce-yourself# iot# iotivity# ipfs# jackdaw# jaunt# java# javascript# javelin# jobs# jobs-discuss# jobs-rus# joker# jukebox# juxt# jvm# kaocha# keechma# kekkonen# keyboards# klipse# kosmos# lambdaisland# ldnclj# ldnproclodo# lein-figwheel# leiningen# liberator# liquid# livestream# local-first-clojure# london-clojurians# lsp# luminus# lumo# mail# malli# mathematics# meander# melbourne# membrane# mental-health# microservices# mid-cities-meetup# midje# minecraft# minimallist# missionary# monads# mount# music# new-channels# new-clojure# nextjournal# nginx# nrepl# numerical-computing# nyc# observability# off-topic# om# om-next# onyx# other-languages# other-lisps# overtone# pamela# parinfer# pathom# pedestal# perun# philosophy# phzr# planck# plastic# play-clj# podcasts# polylith# portal# portkey# portland-or# powderkeg# practicalli# precept# prelude# programming-beginners# project-updates# proletarian# proton# protorepl# pulsar# pure-frame# qa# qlkit# quil# random# rdf# react# reactive# reading-clojure# reagent# reclojure# re-frame# reitit# releases# remote-jobs# respo# rethinkdb# reveal# rewrite-clj# ring# ring-swagger# robots# rum# schema# sci# sfcljs# shadow-cljs# _silence# sim-testing# sioux-falls# slack-help# sneer# sneer-br# spacemacs# specmonstah# specter# speculative# spirituality-ethics# sql# startup-in-a-month# sydney# test200# test-check# testing# thejaloniki# timbre# tmp-json-parsing# tools-build# tools-deps# trading# tree-sitter# uncomplicate# unrepl# untangled# utah-clojurians# videos# vim# vrac# vscode# wasm# web-security# windows# xtdb# yada# yleinen
Apps

keechma

Keechma stack. Mention @U050986L9 or @U2J1PHYNM if you have any questions
sooheon 2018-01-23T17:22:06.000010Z

@mihaelkonjevic in the realworld example, once the user is logged in with jwt, hot code reloading does not log one out. I’m trying to replicate the login functionality, but code changes -> hot reload keeps logging me out. Is the secret sauce in the datasources namespace (current user?)

mihaelkonjevic 2018-01-23T17:24:43.000224Z

@sooheon https://github.com/gothinkster/clojurescript-keechma-realworld-example-app/blob/master/src/cljs/realworld/forms/login.cljs#L24 and https://github.com/gothinkster/clojurescript-keechma-realworld-example-app/blob/master/src/cljs/realworld/datasources.cljs#L48

mihaelkonjevic 2018-01-23T17:24:53.000117Z

on register / login I store the JWT in local storage

mihaelkonjevic 2018-01-23T17:25:04.000429Z

and then get it out from the local storage from the datasource

sooheon 2018-01-23T17:28:34.000537Z

Hah! I thought I’d done that, turns out I spelled the local storage key differently in two places ;P

sooheon 2018-01-23T17:28:42.000448Z

now I see why you have the settings ns

mihaelkonjevic 2018-01-23T17:29:05.000688Z

🙂

mihaelkonjevic 2018-01-23T17:29:31.000585Z

btw, I’m still thinking about the input fields for Korean and similar language

sooheon 2018-01-23T17:29:59.000228Z

let me know what I can do to help with that--my workaround now is just not fully control the form (don’t bind value)

mihaelkonjevic 2018-01-23T17:30:04.000686Z

I think I have and idea how to fix it (probably on the component level), but work is kinda chaotic this week

sooheon 2018-01-23T17:30:24.000498Z

sure, no rush

sooheon 2018-01-23T17:31:28.000170Z

btw, how do you do keepalive/refresh for the jwt?

mihaelkonjevic 2018-01-23T17:32:25.000011Z

either refresh it on each app load

mihaelkonjevic 2018-01-23T17:32:39.000118Z

and / or check when it’s expiring here https://github.com/gothinkster/clojurescript-keechma-realworld-example-app/blob/master/src/cljs/realworld/datasources.cljs#L48

mihaelkonjevic 2018-01-23T17:32:44.000353Z

and return nil if it’s expired

sooheon 2018-01-23T17:33:24.000334Z

mhm. so if you don’t refresh each app load, and that returns nil, that just means user needs to login again?

mihaelkonjevic 2018-01-23T17:33:40.000338Z

yes

mihaelkonjevic 2018-01-23T17:33:52.000867Z

the only issue is if the jwt expires in the middle of user’s session

sooheon 2018-01-23T17:34:17.000391Z

physical session, not server session right? i thought point of jwt was to replace sessions

mihaelkonjevic 2018-01-23T17:34:49.000316Z

yeah, user is clicking around and then requests start to fail because jwt is expired

sooheon 2018-01-23T17:34:57.000519Z

mhm that’s pretty bad

sooheon 2018-01-23T17:35:34.000492Z

it also seems you don’t really decode the jwt clientside, you jsut assume that if it exists, it means they’ve been authenticated?

sooheon 2018-01-23T17:35:55.000616Z

so technically someone can just add a random string as jwt header and make calls

mihaelkonjevic 2018-01-23T17:36:01.000730Z

in this project yeah, but JWT is readable on the client side

sooheon 2018-01-23T17:36:07.000869Z

yeap

mihaelkonjevic 2018-01-23T17:36:21.000770Z

only thing that it ensures is that you can’t tamper with it because of the signature