|
|
|
|
|
|
by jayd16
2315 days ago
|
|
|
I think they're quite good at authentication. They're less good at authorization when you want to update that faster than expiry times. Once you go down the path of checking a DB along side the JWT your design has gone off the rails. Either the expiry works for you or it doesn't. Don't try to "fix" it. |
|
|