JWT: Difference between revisions
| Line 5: | Line 5: | ||
* <PAYLOAD> tells who is making the request | * <PAYLOAD> tells who is making the request | ||
* <SIGNATURE> ensure the correctness (not tampered, trusted source) | * <SIGNATURE> ensure the correctness (not tampered, trusted source) | ||
** <SIGNATURE> = function(<HEADER>,<PAYLOAD>,<SECRET) | ** <SIGNATURE> = function(<HEADER>,<PAYLOAD>,<SECRET>) | ||
===Resources=== | ===Resources=== | ||
* https://jwt.io/ e.g. for decoding | * https://jwt.io/ e.g. for decoding | ||
Revision as of 00:12, 19 February 2022
Jason Web Token (JWT)
- pronounced as jott
- consists of
<HEADER>.<PAYLOAD>.<SIGNATURE>
- <PAYLOAD> tells who is making the request
- <SIGNATURE> ensure the correctness (not tampered, trusted source)
- <SIGNATURE> = function(<HEADER>,<PAYLOAD>,<SECRET>)
Resources
- https://jwt.io/ e.g. for decoding