As a WCQS maintainer I want to simplify MW OAuth Proxy for WCQS so it won't require a cache of tokens so that they aren't invalidated before their expiry.
Currently - all the user tokens (which are returned in cookies) are stored in WM OAuth Proxy memory (on WCQS beta limit is 100), which in high traffic situation will cause a rapid expiry. Additionally - production WCQS will be clustered, so having a session store complicates load balancing (or forces us to implement a distributed cache).To alleviate this, we could use a JWT tokens to be able to validate tokens themselves.
AC:
- MW OAuth Proxy memory footprint is independent of user traffic