I am working on a Function with the NodeJS SDK that allows the users to delete their account. But I am wanting to find a good approach to verifying the integrity of the request is being made by that user and not someone doing so maliciously. The client side sdk is the web sdk and I am using React Native to build the mobile app. Some approaches I have looked into and tried to implement was the user passing their user id and session id over HTTPS and the server checking to see if that session exists and if the user exists inside that session, but the NodeSDK doesn't seem to be able to do this because I get general_unauthorized_scope and (role: applications) missing scope (account) as an error. Just looking for the best approach to implement this safely. Thanks!
JWT token would likely be ideal here I believe
Okay so I can create the JWT and send it over to my NodeJS SDK. Would the verification be something similar to this example?
Recommended threads
- Appwrite sites Issue
Hello Appwrite Support, I'm experiencing a connectivity issue with my Appwrite Cloud project hosted in the **Frankfurt (fra)** region. **Project details** * ...
- Migrate selfhosted 1.5 version to cloud
Hello everyone, is there any chance of migrating an old 1.5 selfhosted instance to the cloud? I tried with migrate but always encounter the error: "Couldnt load...
- My website is not loading for foreigners
I use my own domain, but I think it is set up correctly. My code is written in HTML+CSS+JS. Please help meππ