I found some additional reasons from a page that was linked from that last link here: http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-fo...
* They take up more space * You cannot invalidate individual JWT tokens
In your opinion, are those also the reasons why you wouldn't use PAST for stateless sessions?
Yep
I found some additional reasons from a page that was linked from that last link here: http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-fo...
The other reasons seem a bit weaker.In your opinion, are those also the reasons why you wouldn't use PAST for stateless sessions?