I am confused about why don't we just check valid user by simply comparing between current user (by jwt token) vs current path, does additional query to DB is redundant in this case?
Hello Thomas, thank you so much for this playlist. I'm having a problem with the UserIsUser, I receive a "message": "Bad Request Exception" every time the id=id instead of returning the user. Do you have any idea why?
Depends on the case. But yes, you should check that you are allowed to do so. (I am currently not directly remembering, if i were using this back then - but you can always have a look at github and also expand the project scope :))
![[#2024MAMA] ROSÉ (로제), Bruno Mars - APT. | Mnet 241122 방송](http://i.ytimg.com/vi/dgGqD28J6aQ/mqdefault.jpg)
This guy is awesome, he put the repo
great video, thanks to u i was able to secure my endpoint.
Thank you for watching;)
The whole course is invaluable. All the best.
Thanks! Great to hear :)
I've been searching for this for a while now. Thank you
Thank you for being thorough, but especially for putting the repo!!!!!!!
Thanks for the feedback man!
Thanks for this tuturial!
I am confused about why don't we just check valid user by simply comparing between current user (by jwt token) vs current path, does additional query to DB is redundant in this case?
Tks for Part14 :D
Always a pleasure :)
Part 15 ;)
Where is secret recipe of RoleGuards which you implements?
secret is in the .env file, if i understood the question correct
Hello Thomas, thank you so much for this playlist. I'm having a problem with the UserIsUser, I receive a "message": "Bad Request Exception" every time the id=id instead of returning the user. Do you have any idea why?
Check against the github repo, or share the link to your repo, so that we can check :)
Hi Thomas, thanks for your videos. I guess we should even use UserIsUser for uploadFile controller. Is it correct?
Depends on the case.
But yes, you should check that you are allowed to do so.
(I am currently not directly remembering, if i were using this back then - but you can always have a look at github and also expand the project scope :))
I saw you have imported hasRoles method is not used in roles.guard.ts file.
hasRoles() is used in the controller
Hello Thomas and thanks for the amazing tutorial. But i seem to have an issue : request.user is undefined. any ideas on how to fix this?
Did you send the jwt with the request.
If we need to look further, it would be good to send a github link
@@TommiCodes Hi Oliver, yes that was the issue I didnt use the JwtGuard, you're awesome thanks!
what does roles mean.
See more in video 4. ruclips.net/video/Wzn1rzqPq_s/видео.html
Or specify the question please. Role belongs to a user. In this case a user can be an admin, or a user, ....
@@TommiCodes thanks I will support to watch your video every time there is a new video that is uploaded.