JWT: Difference between revisions

From Wiki RB4
 
(5 intermediate revisions by the same user not shown)
Line 1: Line 1:
== Jason Web Token (JWT)==
== Jason Web Token (JWT)==
pronounced as jott.
* pronounced as jott
* consists of
<HEADER>.<PAYLOAD>.<SIGNATURE>
* <PAYLOAD> tells who is making the request
* <SIGNATURE> ensure the correctness (not tampered, trusted source)
** <SIGNATURE> = function(<HEADER>,<PAYLOAD>,<SECRET>)
** <SECRET> is known by the authentication service and by the application server
 
===Resources===
* https://jwt.io/ e.g. for decoding

Latest revision as of 00:13, 19 February 2022

Jason Web Token (JWT)[edit]

  • pronounced as jott
  • consists of
<HEADER>.<PAYLOAD>.<SIGNATURE>
  • <PAYLOAD> tells who is making the request
  • <SIGNATURE> ensure the correctness (not tampered, trusted source)
    • <SIGNATURE> = function(<HEADER>,<PAYLOAD>,<SECRET>)
    • <SECRET> is known by the authentication service and by the application server

Resources[edit]

Retrieved from "http://uweheuer.spdns.de/mediawiki_new/index.php?title=JWT&oldid=9850"