• JWT encoding is no longer used for session keys. Sessions now default to expiring in 4 hours of inactivity.
that is from github releases, what does it mean?
06/03/2022, 4:46 PM
Previously, Fleet used a Jason Web Token to validate a session. In order to improve security and simplify session management and initial configuration, it's been stripped out. You can read more about the "why" here if you'd like!