Hacker News new | ask | show | jobs
by SgtBastard 1073 days ago
At the cost of having to lookup the validity of the reference token AND its claims on every request.

People use bearer tokens (with bearer claims) to improve system performance and availability … at the cost of increased complexity as now bearer tokens need both expiration and revocation mechanisms.
1 comments
grandpoobah 1072 days ago
Yes but you can cache the lookup for as short a period as is desired :P
link