ergo: if it's ok to have an un-revocable insecure session - use JWT tokens. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

ascotan on Feb 18, 2020 | parent | context | favorite | on: JWT is Awesome

ergo: if it's ok to have an un-revocable insecure session - use JWT tokens.

user5994461 on Feb 18, 2020 [–]

Or use JWT + OpenID Connect in a centralized mode, as the article explains toward the end.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact