directus/directus

Block API Requests When User is Logged-Out

benhaynes asked for this feature about 1 year ago — 1 comment

benhaynes commented about 1 year ago Admin

For the auto-logout... once the user refreshes the page they lose their ability to see private data. Is it possible to check if the current user is active with each API/page request and force refresh them if they are inactive? Or redirect them to the /logout page?

Join the discussion!

Sign-in with GitHub to comment