You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/self-hosted/oel/oauth2/stateless-jwt.mdx
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -150,7 +150,7 @@ The `/userinfo` endpoint requires database lookups to retrieve the consent sessi
150
150
Stateless JWT access tokens are suitable for scenarios where:
151
151
152
152
- High throughput is required: Applications with high token issuance rates benefit from eliminating database writes
153
-
- Token revocation is not needed: Workloads that rely solely on JWT expiration for token lifecycle management
153
+
- Token revocation is not needed: Workloads that rely solely on JWT expiration for token lifecycle management, or have a dedicated mechanism for revoking tokens
154
154
- Introspection is not used: Resource servers validate tokens using JWT signature verification rather than introspection
155
155
- Userinfo endpoint is not required: Client applications do not call the userinfo endpoint for user information
156
156
- JWT access tokens are used: The feature only applies when clients or the global strategy is configured for JWT tokens
0 commit comments