Closed herb123456 closed 3 years ago
The tokens are self-contained, the only mechanism both paseto or jwt consumers have is to blacklist the token’s jti with the token’s exp as the timestamp to drop this blacklist entry.
It looks like this question was answered, so I'm going to close it. Please let me know if that's in error.
Hello
This is a very nice project, and I'm considering to switch from JWT.
I know JWT also doesn't have this feature, But I want to know paseto project can support "set token invalid before expired" feature now? or in the future?
thx.