Hacker News new | ask | show | jobs
by mosdave 1477 days ago
if your frontend is interrogating the jwt you're doing it wrong
1 comments
nijave 1477 days ago
Isn't it pretty common to read the expiration so you know when to refresh tokens?
link
bornfreddy 1476 days ago
It is, among other things like username or user e-mail address.

This is also, together with backend scalability, a major selling point for JWTs. Otherwise one might just as well use regular session ids in cookies.

link