-
Hi,
Actually, we can use JWT but it'll be good to be able to use Paseto : https://paseto.io/
It's a more secure way than JWT.
Regards
-
Is There any tool to decode the version 3 paseto token?
-
Are you still bringing this to IETF?
We need assurances that PASETO has life beyond paragonie.
gcrow updated
11 months ago
-
Hello;
I am trying to play with the refresh endpoint so I can get a general understanding of how things work.
After a successful login / authentication I use static HMAC::generate() to generate …
-
In https://github.com/gofiber/contrib/tree/main/paseto , I saw following is used
> go get -u github.com/o1egl/paseto
but that only support paseto v1 and v2, refer: https://paseto.io/
Paseto v3 …
-
JWT has vulnerabilities if not used properly, so there seems to be a new standard and industry seems to be moving towards PASETO
-
## Support Paseto tokens
### Problem
JWTs are complicated. Paseto looks easier.
### Solution
Support generation of paseto tokens any place you support creating a JWT.
### Alternatives/wor…
-
Support Platform Agnostic SEcurity TOkens (PASETO) . Probably using [JPaseto](https://github.com/paseto-toolkit/jpaseto)
See [Introducing JPaseto](https://developer.okta.com/blog/2020/07/23/introdu…
-
Paseto v1/v2 is planned to be deprecated on 2022-01-01. See https://github.com/paseto-standard/paseto-spec/pull/13.
-
JWT tokens have long been considered too permissive for their own good, in a way that often exposes them to insecurities in regular web application use. Many infosec researchers have started suggestin…