Patch potential JWT holes
thosakwe opened this issue · comments
https://storify.com/jcuid/thomas-h-ptacek-don-t-use-json-web-tokens
Most of these can be averted, though. auth
doesn't actually implement the JWT spec.
moved to angel-dart/angel/packages/auth
https://github.com/angel-dart/angel/tree/master/packages/auth
thosakwe opened this issue · comments
https://storify.com/jcuid/thomas-h-ptacek-don-t-use-json-web-tokens
Most of these can be averted, though. auth
doesn't actually implement the JWT spec.