Check the platform documentation and confirm your settings.When the server returns a response, it also emits a collection of HTTP headers, describing its content-type, length, caching directives, validation token, and more.All you need to do is ensure that each server response provides the correct HTTP header directives to instruct the browser on when and for how long the browser can cache the response.
To my understanding we should give every JWT an id and check if it is revoked in a blacklist.
By default, RID pools are obtained in increments of 500.
Since RIDs are 30 bits in length, a maximum of 1,073,741,824 (2) security principals can be created in an Active Directory domain.
Users, computers, and groups stored in Active Directory are collectively known as security principals.
Each security principal is assigned a unique alphanumeric string called a SID.