Should I validate json web tokens on my app backend or login backend?
I wrote a login backend with express.js to provide authentication (through LDAP) and authorization (through a database of authorized users for each app on mysql). This backend generates jwt and sends them back in the form of an http only c… Continue reading Should I validate json web tokens on my app backend or login backend?