Aug 9, 2017 · 1 min read
Thanks for the mention! I’m considering to write a follow up to this that uses sufficient password hashing and tokens for the JWT instead of the user id so it never hits the users table/collection unless a re-auth needs to happen.
I found the post on reddit, very honored anyone reads it!
