I personally love jwts. It's been suggested in other comments that you can just store tokens in a dB or something.

Why would I, I can just issue a jwt and move on, I don't need to store anything apart from a key to check it with.

And using jwts with nodejs (which I use most frequently) is a super simple and easy npm install, it's almost zero effort to use a jwt.