I am building an application and I do not indent to use token by reference, so using JWTs. But there is a requirement that admins need to be able to revoke user sessions, which would require storing revoked unexpired JWTs, their ids or some hash on the DB and add an extra lookup. Doing this for a user means revoking all JWTs they might have generated if they are using multiple devices, and we don't know which tokens to revoke.

My solution is to add 2 claims (id and sid) and sign sid with a user secret before signing the token with the app secret.

When a token comes in, I first validate it with the app secret. If not valid or expired, we return a 401.

If valid, I validate the sid with the user secret since I now know who it belongs to.

The extra lookup for the user's secret then adds minimal overhead because we've already pre authenticated and can be considered business logic.

Thus, revoking all user sessions requires simply changing the user's secret.

What do you guys think about this? Any holes?

Comments URL: https://news.ycombinator.com/item?id=43503095

Points: 1

# Comments: 0

Categories: Hacker News

Why I'm Obsessed with Lonely Young People (2024)

Fri, 03/28/2025 - 4:55am

Article URL: https://www.cartoonshateher.com/p/why-im-obsessed-with-lonely-young

Comments URL: https://news.ycombinator.com/item?id=43503079

Points: 1

# Comments: 0

Categories: Hacker News

I thought the free market was with us forever

Fri, 03/28/2025 - 4:54am

Article URL: https://www.bbc.co.uk/news/articles/cx2gey6pvddo

Comments URL: https://news.ycombinator.com/item?id=43503074

Points: 2

# Comments: 0

Categories: Hacker News

BLAKE2B Performance on Apple Silicon

Fri, 03/28/2025 - 4:48am

Article URL: https://dizzy.zone/2025/03/27/BLAKE2b-performance-on-Apple-Silicon/

Comments URL: https://news.ycombinator.com/item?id=43503026

Points: 1

# Comments: 0

Categories: Hacker News

The Epicenter of Conspiracy Belief

Fri, 03/28/2025 - 4:48am

Article URL: https://onlinelibrary.wiley.com/doi/full/10.1111/pops.13085

Comments URL: https://news.ycombinator.com/item?id=43503023

Points: 1

# Comments: 0

Categories: Hacker News

ByteDance Releases MegaTTS3

Fri, 03/28/2025 - 4:46am

Article URL: https://github.com/bytedance/MegaTTS3

Comments URL: https://news.ycombinator.com/item?id=43503008

Points: 2

# Comments: 0

Categories: Hacker News

On Tyranny [book]

Fri, 03/28/2025 - 4:45am

Article URL: https://timothysnyder.org/on-tyranny

Comments URL: https://news.ycombinator.com/item?id=43503004

Points: 1

# Comments: 0

Categories: Hacker News

MCP: The 'AI battle' is happening on the client side

Fri, 03/28/2025 - 4:45am

Article URL: https://jknt.in/posts/strategic-implications-mcp/

Comments URL: https://news.ycombinator.com/item?id=43502994

Points: 1

# Comments: 0

Categories: Hacker News

How the Wealth Was Won: Factor Shares as Market Fundamentals [pdf]

Fri, 03/28/2025 - 4:44am

Article URL: https://www.nber.org/system/files/working_papers/w25769/w25769.pdf

Comments URL: https://news.ycombinator.com/item?id=43502989

Points: 1

# Comments: 0

Categories: Hacker News

Complete Guide: Build Your First AI Agent (No-Code and Code Demo)

Fri, 03/28/2025 - 4:41am

Article URL: https://www.youtube.com/watch?v=LAjgtPENG4A

Comments URL: https://news.ycombinator.com/item?id=43502983

Points: 2

# Comments: 0

Categories: Hacker News

Bringing the Magic of Friends Back to Facebook

Fri, 03/28/2025 - 4:41am

Article URL: https://about.fb.com/news/2025/03/bringing-magic-of-friends-back-to-facebook/

Comments URL: https://news.ycombinator.com/item?id=43502978

Points: 2

# Comments: 1

Categories: Hacker News

Biographical Information Summary - This is Just a Summary Joe Pearce
About Joe Pearce joeintenn
Links Joe Pearce
Flounder's Keylime Pie is the Best in the World, At Least I Think So... Joe Pearce
Harley Ride Joe Pearce
Cobra with New Cover Joe Pearce
Mustang Cobra After Ceramic Coating Joe Pearce
Carter County Cruise In Joe Pearce
2003 Ford Mustang SVT Cobra Convertible NAPA Auto Car Show Top 10 Joe Pearce
Ponies in the Smokies - Mustang Trophy Joe Pearce

Hacker News

The Pac-Man Dossier (2015)

Firms and Researchers at Odds over Superhuman AI

Postgres Extension Tutorial

Self-invoicing for AI companies reselling compute

The surprising powerhouse behind rapid V2X growth: electric school buses

Ugly Code and Dumb Things

Nikola's Trevor Milton says he has been pardoned by Donald Trump

What I've Learned by Building to Last

Kratix for Database Management: Amazon RDS Made Simple

Ask HN: What do you think about this JWT revocation strategy?

Why I'm Obsessed with Lonely Young People (2024)

I thought the free market was with us forever

BLAKE2B Performance on Apple Silicon

The Epicenter of Conspiracy Belief

ByteDance Releases MegaTTS3

On Tyranny [book]

MCP: The 'AI battle' is happening on the client side

How the Wealth Was Won: Factor Shares as Market Fundamentals [pdf]

Complete Guide: Build Your First AI Agent (No-Code and Code Demo)

Bringing the Magic of Friends Back to Facebook

Pages

Welcome to Joe Pearce's Home Page.

Web page offered by Joe Pearce © 2004 - 2025 - All rights reserved.

Thanks to the ETSU Computer and Information Sciences Department.

Thanks to the NSTCC Computer and Information Sciences and Computer Engineering Technologies Department.

This is my Favicon.

You are here

Hacker News

Pages

Welcome to Joe Pearce's Home Page.

Web page offered by Joe Pearce © 2004 - 2025 - All rights reserved.

Thanks to the ETSU Computer and Information Sciences Department.

Thanks to the NSTCC Computer and Information Sciences and Computer Engineering Technologies Department.

This is my Favicon.