when we look at the design of web json token recently, one thing I don"t quite understand is that if another person gets the token information returned by a serve, he can also authenticate on his own browser.
when we look at the design of web json token recently, one thing I don"t quite understand is that if another person gets the token information returned by a serve, he can also authenticate on his own browser.
this is normal, so there is encrypted transmission