This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Talk:JSON Web Token (JWT) Cheat Sheet for Java

From OWASP

Revision as of 21:53, 27 May 2017 by Adedov (talk | contribs) (Question on document scope)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

Hi!

In fact, his project needs more specific scoping:

Do you want create lib to facilitate using JWT instead of UI sessions in a secure way? [see http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-for-sessions/]
Do you want to provide framework that protects developers from common JWT failures?
Do you want do that on top of existing libraries?
Why you want to limit this project to Java?

--Adedov (talk) 16:53, 27 May 2017 (CDT)

Retrieved from "https://wiki.owasp.org/index.php?title=Talk:JSON_Web_Token_(JWT)_Cheat_Sheet_for_Java&oldid=230066"