元記事: http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-for-sessions/ Stop using JWT for sessions セッションとして JWT を使うのをやめよう Update - June 19, 2016: A lot of people have been suggesting the same "solutions" to the problems below, but none of them are practical. I've published a new post with a slightly sarcastic flowchart - please have a look at it before suggesting a solution. 更新 - 2016-06-19: