11Eki
Do you need to invalidate JWT token upon password change?
We’ve got an Angular app that calls APIs with JWT token authentication (so an auth token and a refresh token). Now at some point the user changes his password (while normally logged in, so not with a "reset password" logic when h…
