|
|
|
|
|
|
by lightbendover
3658 days ago
|
|
|
> The JWT library I'm using in Laravel blacklists tokens by storing them in their own table, rather than invalidating them. The main rationale for JWTs is that it removes the session store as a point of contention (and secondarily it resolves some xdomain issues that aren't that difficult to work around anyway). If you're going to introduce a new table/cache, you're likely better off just using sessions. Totally agree about timeout management. |
|
|