JWT vs Sessions: Which Auth Strategy Should You Use?

JWT and sessions both handle authentication — but they make completely different trade-offs. Here's when to use each, what can go wrong, and how I implement auth in production NestJS projects.