Hi! I am Sharad,
I am MEAN stack developer having 1 year of experience. I want to learn more about MEAN stack and improve my coding skill and know...
For further actions, you may consider blocking this person and/or reporting abuse
I personally use JWTs that auto expire and need to be refreshed in small intervals. I save them in localStorage and/or cookies on the front end. I use passport at the back end. Has worked great for me on all different sorts of projects
Thank you for the answer, I really appreciate this. I will give it a try.
Thanks for the answer. I find hard to use native session. I think they will less secure as compared to the new packages.
I think it depends.
Each solution has its cons and pros.
As sessions are stored on the server side, if you have multiple users requesting your server, you might run into problems. Of course, there are solutions for this.
By using sessions you can also blacklist users more easily/
On the other hand, using JWT will make things easier for the server as it only has to check the signature of the arriving token.
Blacklisting users when using this approach requires you to make another request to check whether the current user is blacklisted or not.
Also having a look at a caching system such as Redis might be worth your while.
Good luck!