JSON Web Token (JWT)
Topic history | v1 (current) | created by jjones
Details
JSON Web Token (JWT)
see v1 | created by jjones | Add topic "JSON Web Token (JWT)"
- Title
- JSON Web Token (JWT)
- Description
- JSON Web Token (JWT) is an Internet proposed standard for creating data with optional signature and/or optional encryption whose payload holds JSON that asserts some number of claims. The tokens are signed either using a private secret or a public/private key. For example, a server could generate a token that has the claim "logged in as admin" and provide that to a client. The client could then use that token to prove that it is logged in as admin. The tokens can be signed by one party's private key (usually the server's) so that party can subsequently verify the token is legitimate. If the other party, by some suitable and trustworthy means, is in possession of the corresponding public key, they too are able to verify the token's legitimacy. The tokens are designed to be compact, URL-safe, and usable especially in a web-browser single-sign-on (SSO) context.
- Link
- https://en.wikipedia.org/?curid=46647675
resources
treated in auth-jwt
authors
This topic has no history of related authors.