Join Emmanuel Henri to go through the basics of a JSON Web Token and learn why would you need to use them.
- [Instructor] JWT, or JSON Web Token, … is an open standard that is used to securely transmit … information in between parties. … The JSON object primarily consists of three items, … a header, the payload, and the signature. … So go to jwt.io and then scroll all the way down … to when you see the Encoded and the Decoded section here. … That's going to help you understand … what I'm just about to explain. … So the header has usually two parts, … the type of token and the hashing algorithm used … to encrypt the token. … Then, the payload consists of the metadata … from the request party that is required from the server. … Some typical information you'll see in the payload … are issuer of the request, expiration, name, et cetera. … Finally, the signature is what proves the requester … is who he says he is … and is how the request is properly validated, … which is what you see in this section. … Services like AuthO uses JWT … and we talk briefly about the service later on. … In fact, the JWT documentation …
- Open Web Application Security Project (OWASP)
- Reasons for using a JSON Web Token (JWT)
- Adding bcrypt password hashing
- Adding handlers for registration and login
- Finalizing secured endpoints
- Testing APIs with Postman