JSON Web Tokens (JWTs) are a popular authentication mechanism for good reason. JWTs are designed to be stateless, portable identities making them ideal for consumption by web applications and extremely mobile friendly.
While the stateless benefit of a JWT is great, it does come with a problem: Once a token has been issued to the user, that access token is valid until it expires. This time window poses a security concern.
So how do you revoke JSON web tokens if you need to?
Inversoft has figured out how to revoke JSON Web Tokens with little impact on a security token’s portability. That’s why we’re teaming up with IBM developerWorks for a live coding webinar on Thursday, July 27.
Tune into the webinar to learn:
- What is the JWT security concern?
- Why token revocation is necessary?
- Traditional JWT revocation methods.
- How Passport solves this issue.
The webinar is free to attend and there will be a Q&A after to ensure you get the JWT answers you need.
Don’t miss this live coding event, register today.