Nice write up! Question: if an authenticated user gets a new/extra role, does the server create a new JWT or is there a way to update the existing token?
The analogy continues... with JWT access tokens, that's like encoding access data into the hotel key card. You'd have to go back to the front desk to get a new card.
Thu, Jun 6, 2019 12:12pm -07:00
Have you written a
to this? Let me know the URL: