Skip to content
View samsch's full-sized avatar
39 followers · 2 following

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull Sharkx2
BetaSend feedback

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull Sharkx2
BetaSend feedback
Block or Report

Block or report samsch

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Pinned

  1. Stop using JWTs Stop using JWTs
    1 
    # Stop using JWTs!
    2 
    
              
    
              
    
                3
                
    TLDR: JWTs should not be used for keeping your user logged in. They are not designed for this purpose, they are not secure, and there is a much better tool which is designed for it: regular cookie sessions.
    
              
    
              
    
                4
                
    
              
    
              
    
                5
                
    If you've got a bit of time to watch a presentation on it, I highly recommend this talk: https://www.youtube.com/watch?v=pYeekwv3vC4 (Note that other topics are largely skimmed over, such as CSRF protection. You should learn about other topics from other sources. Also note that "valid" usecases for JWTs at the end of the video can also be easily handled by other, better, and more secure tools. Specifically, [PASETO](https://paseto.io/).)
    
              
    
          
    
    
    
  
    

    2. 

      
  2. 
  
    
    
    
      
    
        
    
            
          
boilerplate-webpack-react
boilerplate-webpack-react          Public
        
    
      
    


      
    
        Starting point for Webpack apps (with React support).
      
    

      
    
          
  
  JavaScript


          
            
    

            3
          
      
    
    
    
  
    

    3. 

      
  3. 
  
    
    
    
      
    
        
    
            
          
downfall
downfall          Public
        
    
      
    


      
    
        A library for inverting the flow of events in React
      
    

      
    
          
  
  JavaScript


          
            
    

            3
          
      
    
    
    
  
    

    4. 

      
  4. 
  
    
    
    
      
    
        
    
            
          
development-resources
development-resources          Public
        
    
      
    


      
    
        A place to find all those things I can never remember, but always need.
      
    

      
    
          
            
    

            2
          
      
    
    
    
  
    

    5.