|
|
|
|
|
|
by thatha7777
701 days ago
|
|
|
* "Session ID" is not a cookie attribute akin to path or expires. * There's no "Session" attribute -- (when no expires is set, it's a session cookie) * session cookies deletion is misstated * JWTs are just a possible format for OAuth, not a requirement * incorrectly states that jwts are signed but not encrypted |
|
|