Popularity
4.6
Growing
Activity
6.1
Declining
33
4
2

Description

What is Paseto?

Paseto (Platform-Agnostic SEcurity TOkens) is a specification and reference implementation for secure stateless tokens.

Unlike JSON Web Tokens (JWT), which gives developers more than enough rope with which to hang themselves, Paseto only allows secure operations. JWT gives you "algorithm agility", Paseto gives you "versioned protocols". It's incredibly unlikely that you'll be able to use Paseto in an insecure way.

Caution: Neither JWT nor Paseto were designed for stateless session management. Paseto is suitable for tamper-proof cookies, but cannot prevent replay attacks by itself.

Monthly Downloads: 165
Programming language: Elixir
License: BSD 3-clause "New" or "Revised" License

Paseto alternatives and similar packages

Based on the "Authentication" category

Do you think we are missing an alternative of Paseto or a related project?

Add another 'Authentication' Package