top | item 14550694 (no title) mrmagooey | 8 years ago Isn't JWT a modern alternative to CSRF tokens? discuss order hn newest vmasto|8 years ago It's not. If you think it is you probably store JWT unsafely instead of in an httpOnly secure cookie. hawkweed|8 years ago Why do you think storing JWT in secure cookie is only secure solution?
vmasto|8 years ago It's not. If you think it is you probably store JWT unsafely instead of in an httpOnly secure cookie. hawkweed|8 years ago Why do you think storing JWT in secure cookie is only secure solution?
vmasto|8 years ago
hawkweed|8 years ago