/var/logmarcus chiu

JSON Web Tokens (JWT) (JWS - JWE - Unsecured JWT)

Created on · Last Modified on

JSON Web Token (JWT)
  • is a JSON object containing a claim, which is to be transferred between parties
  • usually used in conjunction with OAuth/OIDC

  • is an implementation of JOSE

JWT - Types

JSON Web Signature (JWS)

JSON Web Encryption (JWE)

Unsecured JWT
  • a JWS with no signature

JWT - Use Cases

Link to original