Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
kbolino
on May 28, 2024
|
parent
|
context
|
favorite
| on:
Should I use JWTs for authentication tokens?
A simple session cookie does not protect against CSRF. In 2005, session IDs were generated with low quality RNGs and too few bits making them easy to guess. OWASP happened for a reason.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
