One thing that’s been nagging me as we build out our framework is how we’re handling JWTs. Right now, we’re doing what most applications do. The token comes back after authentication and gets sent on every request in the header:
GET http://localhost:8080/someprotectedendpoint
Authorization: Bearer <jwt token>This works exactly as expected.… Read more