Hacker News new | ask | show | jobs
by dinkledunk 1398 days ago
It's not clueless or sloppy. They are most likely using https://en.wikipedia.org/wiki/JSON_Web_Token which is a well-defined standard and extremely common in the authentication world because it makes a ton of sense. It lets your authentication server be mostly stateless instead of storing tons of sessions unnecessarily.
1 comments
wizofaus 1397 days ago
Never heard JWT pronounced "jot", I've always sounded it out letter by letter. But nor have I ever considered encoding a JWT into a URL!
link