re: How do you authenticate your users? VIEW POST

re: When you say sessions, do you mean session cookies? In terms of JWT, are you using that for stateless session management? What goes into the JWT bo...

Yes I do mean session cookies. They are easy to use in PHP and the default way to authenticate with Symfony ( Then yes I am using JWT for stateless auth, granted I do not technically have the need for stateless auth. I believe I stored a user JSON object in the JWT which means I didn't need to query the database again as long as the JWT was valid. For the specific implementation I used the Adonis node framework: /

This has got me thinking I need to dig into JWT token more.

I'll have to look at how Adonis's library is implemented.

I would shy away from putting the whole user record into the JWT cookie in the future! I'll actually expand on that exact use case in a follow-up, but for now this is a nice article:

code of conduct - report abuse