Leverage encryption via JWT in sticky queries and hidden form fields, which can in special cases (not in general!) replace sessions.

This developer module leverages the power of encrypted and signed tokens to avoid server state and cookies:

  • For app state in the form of sticky queries
  • For forms where the form state is stored encrypted and signed in a hidden html field.
Supporting organizations: 
Geeks4Change
MachbarMacher

Project information

  • caution Minimally maintained
    Maintainers monitor issues, but fast responses are not guaranteed.
  • caution Maintenance fixes only
    Considered feature-complete by its maintainers.
  • Project categories: Performance
  • Created by geek-merlin on , updated
  • shieldStable releases for this project are covered by the security advisory policy.
    Look for the shield icon below.

Releases

3.0.0 Stable release covered by the Drupal Security Team released 19 December 2024
Works with Drupal: ^10 || ^11
Install:

Development version: 3.x-dev updated 11 Mar 2026 at 20:17 UTC

Using Composer to manage Drupal site dependencies