I have used OAuth2 with and without JWTs as bearer tokens and pretty much used them the same way. JWT helps with fetching the user details without having to hit the DB/backend, and that's basically was the only difference to me.
I believe the issues he is describing is more OAuth2 rather than JWT.
No comments yet.