Great Video! Just a note for anyone watching the video, "If you don't get it, you probably aren't ready for it yet" because Dennis explains pretty well.
This is true. But when I try and implement the PrivateRouter and wrap the PrivateRouter in , React breaks because PrivateRouter isn't a Route. Did you find a solution to this?
For PRIVATE ROUTES: if you aren't redirected to login when you go to the home page from the header link, try wrapping the route tags (private and normal route) with the tag.
oh dude you saved my life too, i was looking for a tutorial about this with react and django and nothing but i found out this video and just saved my life, thank u so much!!!!!! you're a genious thaaankks!!!!! so much
Very very very helpful video. Approach and explanations are great. Code is slightly outdated due to updates (router dom v6) but nothing a little research can't fix and you have updated videos on the subject too! Thank you.
In React-Router-dom version 6 , there is bit difference.... We need to wrap the our tags inside and instead of using component attributes we need to use element as an attribute and pass the component like this .... element= {}
Hey Dennis! Excellent tutorial, as always! Can you also show us how to do registration and also how a logged in authenticated user can do post requests to create/update notes? Cheers, bro!
My honest thoughts. I knew React Django but i restricted my self to build React +Django projects having authentication because i thought i can not handle authentication . And therefore build only projects with django templating language . Finally I got this playlist Thanks man
Replace components = {HomePage} to element={} do the same for login and then make you wrap the in a parent . Import from the 'react-router-dom'.... any confusion reply with your issue and also Note that in v6 of react Routes Redirect has been replaced with Navigate so just swap and it would work
Thank you very much for the awesome content!! I have used React combined with firebase and Django (standalone) but never used them together. This video was really informative and helped me migrate my current frontends (Django Templates) to React.
very sophisticated course, included with beginners mistakes (False, so on..) however I bought all of your courses, but sometimes just funny, but big respect you are trying to show us production ready things, not just useless , common educational apps
Hi everyone! if you are having trouble with at 49:50 with Route component.... component was replaced in favor for element! I also had to wrap my Route tags in a Routes tag, so it would look more like.
Thank you so much for this really, really high quality video. Very informative, explanations were on point and even the errores were interesting as it happens to everyone, even someone who knows their game like you (which makes me feel a little better :)) I finally understand the logic of JWT and can implement it in my django/angular project. My best wishes to you, and thanks again for this fine content.
That's what I was looking for, thanks for creating this usefully tutorial you help me alot, honestly you're a life server. But I can't wait to see another tutorial like this by using axios
Thanks a lot! A very helpful video. The only remark or rather a question. Did anyone face an issue when an "Access" token disappears after multiple pages in different tabs being loaded simultaneously? E.g. one holds Ctrl and clicks on each item of the list. So the 1st and the 2nd item are loaded OK, and the rest end up with a "Login" page. I managed to fix it this way: in the file "AuthContext.js": let [loading, setLoading] = useState(true) _CHANGED_TO_ let [loading, setLoading] = useState(FALSE) and if(loading){setLoading(false)} ==> _CHANGED_TO_ if(loading){setLoading(true)}
Just i want to ask Questions i didn't find another one explain django very good like Dennis i need this for my project the only thing that our project is Mobil application so the front end developed by flutter there is something changed in backend or rest the same
why it is showing error when the code is exactly sale: "A is only ever to be used as the child of element, never rendered directly. Please wrap your in a ".
If anyone is having issues with Redirects and Routes not rendering check your React version. React-router-dom v5 will not work properly in React 18 out of the box. React 18 changes strictmode behaviour, this causes issues with stale routes. redirect runs, the url changes, but no components are rendered. You will have to, disable strictmode, switch to React 17, or update to react-router-dom@6. I just downgraded to React 17 because i don't want to deal with other future breaks, and dont need React18 added features. Hope this saves someone some time.
I wish there was an explanation on why we have to go through this insane amount of trouble doing an extra 1.5 hours of work instead of just using the “login(request,user)” method in django lol. If JWT is so much better, there has to be a better way to encapsulate all of this rather than spend an extra hour every single time we make a project that needs this complicated setup
When creating the private route I am getting [PrivateRoute] is not a component. All component children of must be a or error. I had to wrap my routes in a Routes element because I got another error telling me to do it.
i have a question or two or three. First, storing tokens on Localstorage is considered to be very dangerous. Secondly, how about blacklisting the access token as well (maybe a manual blacklist /deny list)? The access token is still vulnerable to being stolen and used for the duration it is valid. I understand the access token has a smaller time to live but it can still be a long enough duration that ANYONE who as that access token can impersonate the user. Hope that you will reply to this and if found relatable for many, make a video on this.
So I don't know a whole lot so take this with a grain of salt. At my current company(im an intern), we store refresh tokens in local storage. Ideally the tokens will expire soon enough to where even if the token is stolen, the intruder would only have minutes or several seconds to do whatever. So I don't believe it really metters. Could be wrong, thats what I was told. Sorry if I'm wrong
@@ethangordon3935 thabks for the reply man. I guess thats how it goes normally. But I am willing to do a research on how big companies like Facebook and Instagram make it work. Lot to learn.
Technically any POST request is vulnerable to XSS attacks, the key is to add other methods on your site to stop injections. This was a concept video, security will always be its own topic ;)
Don't forget to check out my Complete Django course: dub.sh/rlKmDgY
Your Authentication tutorial is helping me complete my website. ThankYou
This is very high quality content Dennis... thank you for your time and effort put into this production.
This is the second time your tutorials have saved my life! I cannot thank you enough.
YOU ARE MY HERO!
Great Video!
Just a note for anyone watching the video,
"If you don't get it, you probably aren't ready for it yet" because Dennis explains pretty well.
Came here for django authentication, along with the authentication part , this tutorial cleared my context API fundamentals too :)
React-Router-dom in video is the previous version, this is for anyone using React-Router-dom v6. The must be wrapped around as shown below
This works for v6
This is true. But when I try and implement the PrivateRouter and wrap the PrivateRouter in , React breaks because PrivateRouter isn't a Route. Did you find a solution to this?
@@honestoliveoil yaa i too got like that. any fix?
@@munawar1288 dont forget to initialize user variable
@@honestoliveoil
# BrowserRouter
...
sure
you know what there is no teacher that teaches this for free, you're the best teacher i've ever seen ❤
Awesome lecture. Please watch this 2hr and it will save your whole one day in internet surfing
For PRIVATE ROUTES: if you aren't redirected to login when you go to the home page from the header link, try wrapping the route tags (private and normal route) with the tag.
This is exactly what I have been looking for! Complete and well explained.
i think the jwt token must be decoded only in the server with a private key
Bestest Tutorial about JWT with Django on TH-cam. Thank you so much sir, for making this premium grade content for free.
oh dude you saved my life too, i was looking for a tutorial about this with react and django and nothing but i found out this video and just saved my life, thank u so much!!!!!! you're a genious thaaankks!!!!! so much
Amazing content, Dennis! Your channel is helping a lot with my first Django+React application. Please continue, really rich video!
Very very very helpful video. Approach and explanations are great. Code is slightly outdated due to updates (router dom v6) but nothing a little research can't fix and you have updated videos on the subject too! Thank you.
In React-Router-dom version 6 , there is bit difference.... We need to wrap the our tags inside and instead of using component attributes we need to use element as an attribute and pass the component like this .... element= {}
and also useNavigate instead of userHistory
Using PrivateRoute is also not displaying anything for me..
@@rizwanriaz8706p plz help same problem here
For me I get a problem of invalid token when a user opens his profile but sign in all is ok
Knock knock ○●○
Hey Dennis! Excellent tutorial, as always!
Can you also show us how to do registration and also how a logged in authenticated user can do post requests to create/update notes?
Cheers, bro!
Thank you so much Dennis! Whenever I need anything related to Django, I just always come to your videos!!
This is very high quality content. Very appriciated Thanks Dennis From INDIA, KERALA, THRISSUR, KODAKARA
That's exactly what I need. Thanks
Lol I was about to post that but I'm 8 months late.
My honest thoughts. I knew React Django but i restricted my self to build React +Django projects having authentication because i thought i can not handle authentication . And therefore build only projects with django templating language . Finally I got this playlist Thanks man
same went for me in my college project. I had to use django templating since it is so hard to make user authentication in react + django
I really was looking for any tutorial that explains how to apply the refreshing token, but no luck .. anyway you are a legend thanks a lot
Replace components = {HomePage} to element={} do the same for login and then make you wrap the in a parent .
Import from the 'react-router-dom'.... any confusion reply with your issue and also Note that in v6 of react Routes Redirect has been replaced with Navigate so just swap and it would work
Thank you very much for the awesome content!!
I have used React combined with firebase and Django (standalone) but never used them together. This video was really informative and helped me migrate my current frontends (Django Templates) to React.
I almost never like videos, but ty bro you deserved it too much. I f*** love react + django and you just made everything for me so simple.
very sophisticated course, included with beginners mistakes
(False, so on..) however I bought all of your courses, but sometimes just funny, but big respect you are trying to show us production ready things, not just useless , common educational apps
Thanks Dennis Sir. You are my Best teacher.
agreed.
Hi everyone! if you are having trouble with at 49:50 with Route component.... component was replaced in favor for element! I also had to wrap my Route tags in a Routes tag, so it would look more like.
Thanks bro. I was looking for this. Do you know why is that?
@@adnank7496 just the implementation changed with updates
Thank you, it was indeed helpful
What a perfect timing.. amazing .. last night I was looking for this kinda video and after 6 hours I hv seen my Django-guy made it!
thank you very much. I learn JWT just in three day by your video.
Thank you so much for this really, really high quality video. Very informative, explanations were on point and even the errores were interesting as it happens to everyone, even someone who knows their game like you (which makes me feel a little better :)) I finally understand the logic of JWT and can implement it in my django/angular project. My best wishes to you, and thanks again for this fine content.
people suffering with changing the router version 5 to 6 for this tutorial " this guys has a video on that as well " might help"
this is really useful and detailed video on authentication. It helped me a lot . Thanks Dennis.
Thanks Dennis! Amazing tutorial... Congrats from Paraguay!
You are the best teacher and I love watching your video.
It will be very helpful if you make videos on vuejs.
please 😌 ...
Very Very good in-depth auth tutorial. Thank you. this is what the people need !
Suuuuuubscribed !
you saved my life of frustration thank you Dennis.
Thanks for the tutorial! I never worked with tokens and auth, and was really confused about them, but after this video everything became clear.
Aren't you supposed to be a Django expert?
@@zenande699 lol
Good job (y)
Suggestion: You could have used setTimeout instead of setInterval so you don't have to return a clear interval method :)
This was exactly what I needed. Thanks Dennis
this is very valuable and thank you for explaining things thoroughly!
Peferct time when i just finished a videos on it to implement on my project
So much covered in one video, thank you !
Thank yo so much. Very helpful and informative. Expecially for a beginer like me.
Thank you very much for teaching this. I learned a lot from videos.
Me:
*Bunking scool* to attend your videos 😄😆☺
Just what i was looking for + more. thanks!
Thanks Denis.. You have really been helping career
Thank you for the helpful video. Do you have a video for adding different role permissions for rest frame work?
Thank you so much. I was really struggle for this
beautiful tutorial man i love it been looking for this for while now
Thank you!! It's super useful 👏🏻👏🏻👏🏻
This tutorial is TOO GOOD!
You are my savior! Thanks for your content
i was looking for exactly this!!
thank you so much!!
좋은 강의 영상 감사합니다 :)
The only subject missing in this tutorial is to add the old refresh tokens to the blacklistTokens when you log out
make more video like this for react and backend thank you
Amazing video Dennis, really enjoyed it ♥
That's what I was looking for, thanks for creating this usefully tutorial you help me alot, honestly you're a life server.
But I can't wait to see another tutorial like this by using axios
27:31 google translate in chrome recognized those long JWT tokens as Polish lmao
Great content, format and quality!!
Thanks a lot! A very helpful video. The only remark or rather a question. Did anyone face an issue when an "Access" token disappears after multiple pages in different tabs being loaded simultaneously? E.g. one holds Ctrl and clicks on each item of the list. So the 1st and the 2nd item are loaded OK, and the rest end up with a "Login" page.
I managed to fix it this way: in the file "AuthContext.js": let [loading, setLoading] = useState(true) _CHANGED_TO_ let [loading, setLoading] = useState(FALSE)
and if(loading){setLoading(false)} ==> _CHANGED_TO_ if(loading){setLoading(true)}
Thank You Very Much. This helps a lot!!!!
HIGH QUALITY CONTENT!!! THANKS U
Just i want to ask Questions i didn't find another one explain django very good like Dennis i need this for my project the only thing that our project is Mobil application so the front end developed by flutter there is something changed in backend or rest the same
why it is showing error when the code is exactly sale: "A is only ever to be used as the child of element, never rendered directly. Please wrap your in a ".
thank you for your useful tutorials
Awesome bro, respect
thank you i made this with flutter and django .
If anyone is having issues with Redirects and Routes not rendering check your React version.
React-router-dom v5 will not work properly in React 18 out of the box. React 18 changes strictmode behaviour, this causes issues with stale routes.
redirect runs, the url changes, but no components are rendered.
You will have to, disable strictmode, switch to React 17, or update to react-router-dom@6. I just downgraded to React 17 because i don't want to deal with other future breaks, and dont need React18 added features.
Hope this saves someone some time.
Thank sir. So useful 🤟🏼
Hey Dennis please add a video on social login with drf and react
More video on React and Django
you are the man we need !
Hey Dennis,
Thank you this is really helpful. do you have any other video for the registration and forgot password process?
I wish there was an explanation on why we have to go through this insane amount of trouble doing an extra 1.5 hours of work instead of just using the “login(request,user)” method in django lol. If JWT is so much better, there has to be a better way to encapsulate all of this rather than spend an extra hour every single time we make a project that needs this complicated setup
Just what I needed. Thanks!
When creating the private route I am getting [PrivateRoute] is not a component. All component children of must be a or error. I had to wrap my routes in a Routes element because I got another error telling me to do it.
Loved this Video!!
Thank you :))
Perect video. Thank you a lot
Amazing work, thank you!
thank uuuuuuuuu so much you saved my life
Thank you!! 🙏🏻
Hi Dennis bro, your doing awesome video ❤, can you please tell me what theme your using in your vs code
👌
i have a suggestion to add token blacklist for refresh token after logging out, it prevent older user refresh his token after log out
Waiting for it 💙
Its here ;)
Hello Dennis, thank you for this video, how do I incorporate password reset, and others with simple jwt
This is great. Got to know lot of things from your video. One doubt....Can we modify the default user model and create route for api to add new user ?
Also looking for a way to create route to add new user, any help would be appreciated
thanks for this tutorial
Nice job boss!!
Best of the best!
Hey Dennis Ivy, Please make a video on multi tenant for saas based application in django.
i have a question or two or three. First, storing tokens on Localstorage is considered to be very dangerous. Secondly, how about blacklisting the access token as well (maybe a manual blacklist /deny list)? The access token is still vulnerable to being stolen and used for the duration it is valid. I understand the access token has a smaller time to live but it can still be a long enough duration that ANYONE who as that access token can impersonate the user.
Hope that you will reply to this and if found relatable for many, make a video on this.
So I don't know a whole lot so take this with a grain of salt. At my current company(im an intern), we store refresh tokens in local storage. Ideally the tokens will expire soon enough to where even if the token is stolen, the intruder would only have minutes or several seconds to do whatever. So I don't believe it really metters. Could be wrong, thats what I was told. Sorry if I'm wrong
@@ethangordon3935 thabks for the reply man. I guess thats how it goes normally.
But I am willing to do a research on how big companies like Facebook and Instagram make it work. Lot to learn.
YOU ARE THE BEST❤❤❤
57:37 stealth flex
very nice video, but in terms of security there is a lot to do, the backup of tokens in localstorage has many security holes
you can be a victim of csrf vulnerabilities
can be vulnerable to cross-site scripting (XSS) attacks. XSS
Technically any POST request is vulnerable to XSS attacks, the key is to add other methods on your site to stop injections. This was a concept video, security will always be its own topic ;)
@@DennisIvy Fingerprints are your best friend!
how would you make this production ready?
This is perfect, thanks!!
Thank you broo you helped me
Thank you very much