
Hey everyone, I’m looking for some guidance on the best way to authenticate frontend requests to my API gateway using Appwrite sessions.
Right now, I'm trying to move away from using Appwrite's JWT tokens (since they expire every 15 minutes and that’s not ideal for scalability) and instead validate user sessions on the backend.
I'm running into some challenges:
I’m not totally sure the best way to retrieve and validate the session ID from the frontend.
I’m also seeing errors like the user missing the "account" scope, but not sure if that’s a setup issue or expected behavior.
If anyone has experience with validating Appwrite sessions on a backend (outside of Appwrite's client SDKs) or designing scalable auth flows with Appwrite, I’d love any advice, best practices, or examples you can share.
Thanks so much!
Recommended threads
- Signup issues
I’m facing very serious issues with user signups on our live web app. Many users are experiencing problems during the signup process, which is becoming extremel...
- Using the React Native SDK's getFileDown...
const result = await storage.getFileDownload('bucketId', 'fileId'); console.log(result, typeof result); >>[] object
- Function logs
Where do I see the function logs? I created them using this documentation, tried log and context.log https://appwrite.io/docs/products/functions/develop and I d...
