Nice write up! Question: if an authenticated user gets a new/extra role, does the server create a new JWT or is there a way to update the existing token?
The answer is it depends on how your access tokens / hotel key cards are implemented!
Thu, Jun 6, 2019 12:11pm -07:00
Have you written a
to this? Let me know the URL: