Roundup Tracker - Issues


Author rouilj
Recipients rouilj
Date 2022-08-02.16:50:42
Message-id <>
would a jwt make a good base for password less login with a magic link/url?

Consider a jwt with a 2 minute lifetime appended to a url like:


the jwt has a scope/role of new_session that when browsed to results
in a new session cookies for the user.

Magic link might be better setup using a session token that can be revoked rather than
the time limited jwt but something to consider.
Date User Action Args
2022-08-02 16:50:42rouiljsetmessageid: <>
2022-08-02 16:50:42rouiljsetrecipients: + rouilj
2022-08-02 16:50:42rouiljlinkissue2551064 messages
2022-08-02 16:50:42rouiljcreate