mirror of
https://github.com/encode/django-rest-framework.git
synced 2025-08-02 03:20:12 +03:00
Add warning regarding TokenAuthentication expiration and rotation
This commit is contained in:
parent
c9d2bbcead
commit
1f0716b3c8
|
@ -160,7 +160,7 @@ The `curl` command line tool may be useful for testing token authenticated APIs.
|
|||
|
||||
---
|
||||
|
||||
**Note:** If you use `TokenAuthentication` in production you must ensure that your API is only available over `https`.
|
||||
**Note:** If you use `TokenAuthentication` in production you must ensure that your API is only available over `https`. Additionally, beware that `TokenAuthentication` tokens do not rotate or expire. A number of [Third party packages](#third-party-packages) provide more advanced token support.
|
||||
|
||||
---
|
||||
|
||||
|
|
Loading…
Reference in New Issue
Block a user