We live in a world of client side applications, web and mobile, and we need a secure way to authenticate our users. Sessions id's and cookies have been around for a long time, but are they still the good solution for single page or mobile applications? And now that we're splitting up big applications into different microservices, should every microservice handle sessions individually?
In this talk I'll introduce you to JSON Web Tokens (JWT) and how they might change your view on securely transmitting data bewteen services. We'll take a look on what's inside of a JSON Web Token, what makes them secure and how you can use them in PHP applications.