October 2019
Intermediate to advanced
444 pages
10h 37m
English
JWTs are a great way to provide authentication combined with authorization in a web application. As demonstrated on the official website, a JWT consists of three parts:
These parts are Base64-encoded and joined with . to form a single string. This string is put into the authorization header of an HTTP request (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Authorization). One important remark is that TLS is mandatory for this kind of authentication since the headers as well as everything else are sent in plaintext—everyone ...
Read now
Unlock full access