[keycloak-user] token vs cookie for clients
Avinash Kundaliya
avinash at avinash.com.np
Wed Mar 29 03:32:21 EDT 2017
Hello,
I have a question that is more related to OAuth2 in general. If i am using
keycloak with a web application. The backend has the token, is it suggested
for the client to also communicate with the backend using the JWT or rather
manage its own session and cookies.
I think its better to manage own session and cookies, but also curious how
would single sign out work in those cases?
I hope this is quite a basic question and there are defined ways to
approach such issues.
Thanks for all the help.
--
---
Avinash Kundaliya
avinash at avinash.com.np
http://avinash.com.np
More information about the keycloak-user
mailing list