gy09535 commented on issue #2899: URL: https://github.com/apache/apisix/issues/2899#issuecomment-736187041
> > @Yiyiyimu @nic-chen welcome to take a look at this issue > > I am not sure different instances use one account can cause etcd auth problem? I read the etcd doc: I read the etcd doc ref: https://etcd.io/docs/v3.4.0/learning/design-auth-v3/ ``` There are two kinds of token types: simple and JWT. The simple token isn’t designed for production use cases. Its tokens aren’t cryptographically signed and servers must statefully track token-user correspondence; it is meant for development testing. JWT tokens should be used for production deployments since it is cryptographically signed and verified. From the implementation perspective, JWT is stateless. Its token can include metadata including username and revision, so servers don’t need to remember correspondence between tokens and the metadata. ``` Jwt is stateless and It can auth for every request, This is not a problem. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
