March 2018
Intermediate to advanced
380 pages
9h 23m
English
Content preview from Full Stack Development with JHipster
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
JWT authentication
We need to transfer information between microserves securely. The requests must be verified and signed digitally, where the applications verify the authenticity of the requests and respond to them.
We need to have a compact way to handle this information in the REST or HTTP world, since the information is required to be sent with each request. JWT is here to help. JWT is basically JSON web tokens in an open web standard that helps to securely transfer information between parties (applications). JWT will be signed using a secret, based on the HMAC algorithm, or with a public/private key. They are compact and self-contained.
For advanced uses, we need to add Bouncy Castle (librarieshttps://en.wikipedia.org/wiki/Bouncy_Castle_(cryptography) ...