I am looking at creating a Django web application that requires authentication but does not require cookies or javascript to be enabled on the client.
Will there be a problem with creating a JSON web token and putting this value in a hidden input value, checking and checking this value in all mail requests? All traffic will exceed HTTPS.
Similar to this topic, but does not mention specific JSON tokens. The accepted answer seems to address issues that JSON web tokens resolved;
How to make stateless authentication (no session) and no cookie?
source
share