an encrypted storage of the user's authentication credentials, stuffed into a persistent domain cookie.
Thus, JWT is just a standardized way of encrypting a json payload and storing/retrieving it in a cookie.
works for me (my arch is stateless), and seems orthogonal to the arguments described in the article.
an encrypted storage of the user's authentication credentials, stuffed into a persistent domain cookie.
Thus, JWT is just a standardized way of encrypting a json payload and storing/retrieving it in a cookie.
works for me (my arch is stateless), and seems orthogonal to the arguments described in the article.