Yeah, this isn't sketchy as hell or anything. StartCom are well known for their misunderstanding of how TLS works (see: the heartbleed revocation bull), and... this apparently costs money? IIRC StartCom also used to…
> He just doesn't like everybody uses JWT instead of cookie in any case. Why would anybody care about how you implement something in your application, unless they have a concrete reason that your implementation is less…
Yeah, this isn't sketchy as hell or anything. StartCom are well known for their misunderstanding of how TLS works (see: the heartbleed revocation bull), and... this apparently costs money? IIRC StartCom also used to…
> He just doesn't like everybody uses JWT instead of cookie in any case. Why would anybody care about how you implement something in your application, unless they have a concrete reason that your implementation is less…