One of the reasons of sticking to Quasar Framework is the efforts of the team paying great attention to security, thank you!
In regard to the usage of JWE - https://quasar.dev/security/dos-and-donts#web, I wonder if you have a code sample on the application of JWE and with Quasar boot file?
s.molinari last edited by
@susansiow - From the client app’s perspective, there is no difference to using normal JWTs. The difference is how the data in the JWT is encrypted and that happens all on the server side. That point should read…
Do use the JWE form of JWTs, instead of the JWS form.
@s-molinari Thanks Scott!