WEBVTT

00:01.770 --> 00:07.020
So before we actually start working on the middle, where on our back and I have a bit of a challenge

00:07.020 --> 00:10.950
for you and it's a pretty straightforward one and you shouldn't have any difficulty with it, but I

00:10.950 --> 00:17.670
thought I'd give you a chance to try things out on your own inner authenticate token function inside

00:17.670 --> 00:19.830
the handler, stash a big go.

00:20.100 --> 00:23.900
At no point are we validating whether or not a token has expired.

00:24.330 --> 00:30.600
If you recall, we issued tokens and we give them an expiry of 24 hours and yet we were doing nothing

00:30.600 --> 00:31.410
with that expiry.

00:31.420 --> 00:38.400
So if I get a token on January the 1st and then leave the site and come back in July, that token will

00:38.400 --> 00:39.510
still pass muster.

00:39.510 --> 00:40.280
And that's no good.

00:40.290 --> 00:42.780
We actually want to check for expiry.

00:43.530 --> 00:48.080
So I'm going to challenge you to figure out how to implement that check for expiry.

00:48.090 --> 00:51.840
And I'll give you a few hints to start with over in tokens, Dogo.

00:53.500 --> 00:58.990
In the insert token functionality, you're going to have to make a change to that function to insert

00:58.990 --> 01:04.450
token, and you're also going to have to make a change to this one, get user for token.

01:05.020 --> 01:10.720
And it's not terribly challenging, but you should be able to do this on your own without much difficulty.

01:10.750 --> 01:11.700
So you give it a try.

01:11.710 --> 01:15.310
And in the next lecture, I'll show you how I implemented that functionality.