Jwt on Hi, I'm Muhammad Amal

Jwt on Hi, I'm Muhammad Amal https://muhammadamal.my.id/tags/jwt/ Recent content in Jwt on Hi, I'm Muhammad Amal Hugo en-us Wed, 09 Nov 2022 09:00:00 +0700 Refresh Tokens and Token Revocation https://muhammadamal.my.id/blog/refresh-tokens-revocation/ Wed, 09 Nov 2022 09:00:00 +0700 https://muhammadamal.my.id/blog/refresh-tokens-revocation/ Refresh tokens correctly: short access + long refresh, rotation, revocation lists, defeat theft. Why JWT for Sessions Is Usually Wrong https://muhammadamal.my.id/blog/jwt-for-sessions-usually-wrong/ Mon, 07 Nov 2022 09:00:00 +0700 https://muhammadamal.my.id/blog/jwt-for-sessions-usually-wrong/ JWT vs server sessions. When JWT pays off, when it costs. Migration paths. JWT Done Right, Signing, Verifying, Rotating Keys https://muhammadamal.my.id/blog/jwt-done-right/ Fri, 04 Nov 2022 09:00:00 +0700 https://muhammadamal.my.id/blog/jwt-done-right/ JWT done right: RS256/ES256, expiry, audience, JWKS rotation. Patterns that prevent disaster.