TL;DR —
JWTs were originally designed for use in OAuth - which is fundamentally different to user sessions. SuperTokens are the most secure and easy to implement solution for user session management. I will attempt to make a comprehensive list of the pros and cons of using JWT for this context. I do not intend to solve this debate, since devs (especially devs) are often strongly opinionated. However, I do offer my opinion on the best solution for session management (spoiler: it has the advantages of JWT without any of its disadvantages!)
[story continues]
Written by
@supertokensio
The most secure and easy to implement solution for user session management
Topics and
tags
tags
jwt|json-web-token|session-management|oauth2|user-authentication|web-security|token-refresh|security
This story on HackerNoon has a decentralized backup on Sia.
Transaction ID: TJTSAHCzmSLQcaarDmNHLBrNY38MEVXhNA2DKGdcCdU