A different approach to User Sessions in Microservices

Written by honatas | Published 2020/12/25
Tech Story Tags: microservices | jwt | redis | session-management | user-sessions-in-microservices | central-session-server | session-data-management | redis-and-jedis | web-monetization | hackernoon-es

TLDR A different approach to User Sessions in Microservices has been proposed by Jonathon de Moraes. JWT lets users log in and send their session data back to the server with every request. This poses a huge bunch of issues we didn't have before, and I'll try to describe some of them now. The old days have been stored in the server's memory, indexed by a randomly generated hash with no meaning. In possession of the token, any attacker can try to try to decrypt it in order to access the data within it.via the TL;DR App
no story
Published by HackerNoon on 2020/12/25
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy