Question 1

How to set up Joken for RSA signing in a Phoenix app?

Accepted Answer

First, add Joken and jason to your mix.exs dependencies, then configure a signer using PEM keys as detailed in the asymmetric cryptography signers guide. Use Joken's configuration options to specify algorithm and key details for token creation and validation.

Question 2

Joken vs Guardian: which is better for Elixir authentication?

Accepted Answer

Joken focuses specifically on JWT handling with extensive algorithm support, while Guardian is a more opinionated authentication framework built on top of JWT. Choose Joken for fine-grained control over tokens, or Guardian for a higher-level auth solution with built-in plugs and session management.

Question 3

What's the best way to test JWT tokens with Joken?

Accepted Answer

Use Joken's built-in testing utilities, which provide mocks and helpers for simulating token generation and validation in test environments. Refer to the testing guide for examples on isolating auth logic in unit and integration tests.

Question 4

Does Joken support refresh tokens or just access tokens?

Accepted Answer

Joken handles core JWT operations like signing and validation, but refresh token logic must be implemented separately by developers. The library's flexibility allows custom claims for expiration, but token lifecycle management is up to the application.

Question 5

How to migrate from Joken 1.x to 2.x without breaking changes?

Accepted Answer

Follow the migration guide in the documentation, which outlines key differences like updated APIs and configuration shifts. Test thoroughly with benchmark scripts to ensure performance parity and adjust signer setups as needed.

Question 6

Can I use Joken for stateless authentication in microservices?

Accepted Answer

Yes, Joken is ideal for stateless auth in Elixir-based microservices due to its support for various signing algorithms and validation rules. Ensure consistent configuration across services and use asymmetric cryptography for secure inter-service communication.

joken

What is joken?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions