I mean this is fundamentally untrue JWT is the underlying standard for Oauth2.0 so its something that is worth understanding even if you don't plan to utilize it.
JWT has nothing to do with sessions. It's a stateless authorization mechanism. I actually have never seen it used in production as a substitute for sessions.
Can you show examples of production software that uses JWT as a substitute for session?
6 comments
[ 3.3 ms ] story [ 28.7 ms ] threadCan you show examples of production software that uses JWT as a substitute for session?