Hacker News new | ask | show | jobs
by positiveblue 287 days ago
TLDR: JWTs say who you are. Wafers say who this request is on behalf of and exactly what it can do.
1 comments
afiori 287 days ago
It looks very similar to Macaroons

https://news.ycombinator.com/item?id=39204314

https://news.ycombinator.com/item?id=43499783

https://news.ycombinator.com/item?id=25233311

What are the differences?

link
positiveblue 287 days ago
Wafers are definitely inspired by Macaroons, but the core difference is that delegation is tied to identity.

In Macaroons, anyone who holds the token can tack on caveats.

In Wafers, only the current holder can extend it, and they can explicitly name the next holder by public key.

That gives you a verifiable chain of custody instead of an unanchored blob.

link