re: Securing Node.js RESTful APIs with JSON Web Tokens VIEW POST

TOP OF THREAD FULL DISCUSSION
re: Hvala for this handy reference! I have implemented JWT for my Todo-List-App, to be able to also make a CLI for it. The web-frontend, and the API fo...
 

I'd put the JWT in a cookie and expand the middleware to check if there is one, too. The it works like a session, it's more secure (keyword: session hijacking)

code of conduct - report abuse