[knite]

These seem a lot like JWT (JSON web token)?

JWT is mentioned in passing near the end of the article, but it would be great to see a description of what makes macaroons different or better.

[evancordell]

Macaroons can be attenuated and delegated in ways that JWTs can not. Restricting the access granted by a JWT requires having the initial keys used to sign the token. Macaroons also have a built-in mechanism for verifying assertions made by third parties (in the form of "third party caveats")