Skip to content
View samsch's full-sized avatar

Block or report samsch

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Pinned Loading

  1. Stop using JWTs Stop using JWTs
    1
    # Stop using JWTs!
    2
    
                  
    3
    TLDR: JWTs should not be used for keeping your user logged in. They are not designed for this purpose, they are not secure, and there is a much better tool which is designed for it: regular cookie sessions.
    4
    
                  
    5
    If you've got a bit of time to watch a presentation on it, I highly recommend this talk: https://www.youtube.com/watch?v=pYeekwv3vC4 (Note that other topics are largely skimmed over, such as CSRF protection. You should learn about other topics from other sources. Also note that "valid" usecases for JWTs at the end of the video can also be easily handled by other, better, and more secure tools. Specifically, [PASETO](https://paseto.io/).)
  2. boilerplate-webpack-react boilerplate-webpack-react Public

    Starting point for Webpack apps (with React support).

    JavaScript 3

  3. downfall downfall Public

    A library for inverting the flow of events in React

    JavaScript 2

  4. development-resources development-resources Public

    A place to find all those things I can never remember, but always need.

    2