Yes I agree. I did read a few articles while doing some further research later that suggests JWTs shouldn't be used for session management, but I won't pretend to be an expert.I'm fairly certain storing the data in a HTTPS-only cookie would not yield the same result.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Yes I agree. I did read a few articles while doing some further research later that suggests JWTs shouldn't be used for session management, but I won't pretend to be an expert.I'm fairly certain storing the data in a HTTPS-only cookie would not yield the same result.