Also one more question. Do I even need the jwt in that situation when I’m using websockets for communication and my own way of authentication between the extension and the ebs ? In this case the use of jwts seems a bit redundant to me.
I am trying to make the communication secure but I see no other point in using the twitch jwt other than validating the initial connection and recognizing the user.
I don’t know though what the twitch’s stance on that is.