|
|
|
|
|
|
by tszming
3657 days ago
|
|
|
People don't realize it is not a proper comparison as JWT is only the format/spec - you can still achieve stateless client session by encrypting an XML payload (e.g. user id) in the browser cookie. Storing data in client and verify by signature is not a new thing. |
|
|