Hi there, we have been using kong for some time now, and after some time I wrote a small guide on how to use acl with jwt token.
Happy to hear your feedback!
1 Like
Very nice, I know the process leveraging the ACL plugin and JWT plugin all to well myself too as a frequent user of those plugins and the OAuth2 
. Do you cache the JWT on your client side till its exp to minimize cpu utilization around crypto/token generation 
?
1 Like
Thanks Jeremy! we are not doing that at the moment but will take a look , makes sense to not decrypt the token each time , just found this actually How can one succesfully implement cache in Kong 