The current approach employed by Omnigres users is good old sessions (since latency to the database is non-existent) and omni_txn's transactional variables (https://docs.omnigres.org/omni_txn/variables/) to store session-related data.

This way we don't need to handle the difficult parts of JWT (forced expiration, etc.) and the mental model becomes rather simple.