(Sorry if my english is bad...)
Hi, i want to use an (self-made) alternative system to work with user session instead of using the Apperyio built-in system.
In fact, i want my users sessions stay active between a login and a logout event.
My logic :
Login will check the presence of my users in collection "user_bis" and bring back all user data in local storage.
I will use these user data in local storage to identify the user through the different screen of my mobile app.
Logout will erase my local storage (except "Favoris data" working in local mode) and bring me back to the login screen
The login screen prevent the user to access other screen if login services is not sucessfull
I don't want to use a session token because of his lifetime and also i don't need to use ACL function cause every data written by the user will contains his id.
I will retrieve all user data user using this "id" (like in relationnal database)1 - Can you confirm to me :
That the user session token is only usefull for the acl function and his lifetime ?
That i will ever can create, delete and make every operation in my database's collection (except users, file, device) without session token2 - According to you, there are any reasons why i shouldn't use this kinf of session logic ?
Thank you.
Sami