|
|
|
|
|
|
by conradludgate
919 days ago
|
|
|
No. But a stateful revocation service can be extremely lightweight. The number of JWTs being revoked will be minimal and they are only revoked until they would otherwise expire, which keeps the dataset small. This could easily fit in an in memory cache to avoid a database hit. |
|
|