This article serves as a rebuttal to <a href="http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-for-sessions/" rel="nofollow">http://cryto.net/~joepie91/blog/2016/06/13/stop-using-jwt-fo...</a>. It deconstructs each criticism presented and explains why JWTs are a secure and elegant solution to authentication. It also goes over how one would go about implementing authentication securely using JWTs with Node + Express + Passport.js.