When using JSON web tokens in your application, it’s required to have at least a secret key. Using a secret key comes with a simple setup. The downside here, you must share the secret between the parties interacting with the JWT. Going one step further, you could create and …
Continue ReadingA JSON Web Key (JWK) is an important piece in the JWT universe because it represents a cryptographic key using a JSON data structure. Each JWK is represented by key-value pairs, like a typical JavaScript object but in JSON format. Additionally, the JSON Web Key Set is a JSON object …
Continue Reading
All the previous tutorials in this series on JSON web tokens used a secret or private key in combination with a signing algorithm to create a token’s signature. But in contrast, the JWT specification also allows unsigned tokens. This supports use cases where a token’s content is secured …
Continue ReadingYou’re automatically using claims when using JWTs in your application. JWT Claims are an important piece in the JSON web token specification. Claims represent the data you’re storing inside the JWT. A JWT claim set is the JWT payload consisting of more than one key-value-pair. Imagine a JWT …
Continue ReadingFind interesting tutorials and solutions for your problems.