I'm building a single page application using React and then node.js for the back-end API routes. I've researched a lot about the different authentication strategies. I've narrowed down my options to the following:SessionsJSON Web TokenOAuth?The problem with JWT is that revocation is difficult and sparsely documented, refreshing tokens also.I want to get this right the first time while also maintaining room for scalability. I am an experienced developer but not so much in terms of the norm of what is to be used in the face of a problem like this.Any help would be greatly appreciated.
Submitted March 25, 2017 at 03:55PM by _shahram
No comments:
Post a Comment