[bhl]

> the revoked set is smaller than the full set of active tokens so maybe that is a win

Yeah, it seems to me the difference between having a revocation / blacklist and a non-JWT based sessions isn't the number of queries to a redis cache, since each request to the resource server will result in a check first. It's the in-memory size of the cache.

I think that clears up my question about the benefits of using JWT. Thanks! :)