|
|
|
|
|
|
by geezerjay
2734 days ago
|
|
|
> This kind of comment might make one wonder why not just use a sessionId to begin with JWT and sessionIds are totally different beasts. JWT are used per request, are designed to expire and be refreshed, are specific to each individual endpoint and store authorization info in a specialized third party service. |
|
|