|
|
|
|
|
|
by eagsalazar2
1361 days ago
|
|
|
This "the invalidated JWTs list is smaller" argument really doesn't hold water. Size of cache is a red herring (unless you are facebook or something). 99.99% of the time the most important variables are simplicity and security, surface area for dev errors or attacks. Smaller invalid cache fails on those fronts and only is superior in ways that don't actually matter. |
|
|
https://news.ycombinator.com/item?id=33020993
I disagree that stateful based sessions are simpler.
I disagree size of cache is a red herring.
You don't have to be FB to want to optimize your memory usage.
In the end I prefer the more efficient (mostly stateless) solution and it's really easy to implement.
But to each their own of course.