Invalidating client side JWT session
There are several reason to invalidate a JWT token before its expiration time: account deleted/blocked/suspended, password changed, permissions changed, user logged out by admin. So your question is on topic There are several techniques to apply or combine depending on your use case 1) Remove the client token from local storage 2) Token blacklist: Store … Read more