We're a place where coders share, stay up-to-date and grow their careers.
404 bio not found
All private interactions must abide by the code of conduct.
No it won't. That's why we have "Domain" attribute. A cookie ...
Dec 23 '21
Now, that's a good point since it brings a crazy amount of co...
I was thinking the same. Indeed, they can. But stealing a tok...
To be fair, I do not see a lot of benefits in these “layout” ...
May 2 '21
Probably there is, but do you really want to use it? Naha... ...
Apr 11 '21
Storing JWT access token in memory will make it vulnerable to...
Storing them in local storage makes them indeed vulnerable to...
Then start elaborating yourself. Why session tokens shouldn’t...
Having refresh tokens is again, similar to saving a session. ...
Feb 19 '21
JWT is inherently unsafe for the sole purpose it cannot be im...
First of all, you’ll need hundreds, if not even thousands of ...
Feb 18 '21
Although an interesting solution, there are few drawbacks to ...
Feb 10 '21
All 12 comments
JWT Authentication Best Practices
No it won't. That's why we have "Domain" attribute. A cookie ...
JWT Authentication Best Practices
Now, that's a good point since it brings a crazy amount of co...
JWT Authentication Best Practices
I was thinking the same. Indeed, they can. But stealing a tok...
Why you should use Chakra UI in React
To be fair, I do not see a lot of benefits in these “layout” ...
JSON web tokens are NOT meant for authenticating the same user repeatedly: Use session tokens instead
Probably there is, but do you really want to use it? Naha... ...
JSON web tokens are NOT meant for authenticating the same user repeatedly: Use session tokens instead
Storing JWT access token in memory will make it vulnerable to...
JSON web tokens are NOT meant for authenticating the same user repeatedly: Use session tokens instead
Storing them in local storage makes them indeed vulnerable to...
JSON web tokens are NOT meant for authenticating the same user repeatedly: Use session tokens instead
Then start elaborating yourself. Why session tokens shouldn’t...
How to log out when using JWT
Having refresh tokens is again, similar to saving a session. ...
Please Stop Using Local Storage
JWT is inherently unsafe for the sole purpose it cannot be im...
Please Stop Using Local Storage
First of all, you’ll need hundreds, if not even thousands of ...
A Working Solution to JWT Creation and Invalidation in Golang
Although an interesting solution, there are few drawbacks to ...