loading...

re: Please Stop Using Local Storage VIEW POST

TOP OF THREAD FULL DISCUSSION
re: Hey, this is a great point. But hear me out. Let's say you want to store a JWT in a cookie -- that's fine. BUT: the purpose of JWTs is to be state...
 

I don't think you understand that APIs don't scale with sessions maintained on server side. That's why we no longer use session cookies. Storing JWT in http only cookies is not perfect, but ok from scalability perspective.

code of conduct - report abuse