Tag
3 articles
JWT
Every article on the AldeaCode blog tagged with this topic.
Security
Where to Store JWT Tokens: Cookies vs localStorage
Where to store a JWT in 2026: HttpOnly cookies, readable sidecars, CSRF and XSS tradeoffs. The pragmatic JWT cookie pattern, with code.
Read article → Developer
How to Decode a JWT: Header, Payload, Signature
Decode a JWT and read the header, payload and signature in your browser. No upload, no token leak. A 30 second routine for debugging JWT tokens.
Read article → Security
JWT vs Session Cookies: Which to Use in 2026
JWT vs session cookies compared on revocation, scaling, size and attack surface. A clear guide to picking the right auth approach in 2026.
Read article →