Yet, these warnings are overshadowed by marketers, YouTubers, bloggers, course creators, and others who knowingly or unknowingly promote it.
There are many in-depth articles and videos from SMEs of companies like Okta talking about the potential dangers and inefficiencies of using JWT tokens. Source: “JWT should not be default for your sessions” (see reference below for links). Source: “Why JWTs Are Bad for Authentication”- Randall Degges, Head of Developer Advocacy, Okta. Source: “Stop using JWT for sessions” (see reference below for links). To use a metaphor, if you are a hammer, everything looks like a nail. The problem may appear similar, but utilizing unique technologies to solve general issues could create unanticipated consequences. Sometimes, people take technologies that are intended to solve a narrow problem and start applying them broadly. Tags: Authentication, Authorization, JSON, JWT, Redis, security, Sessions
