Understanding JSON Web Encryption (JWE)

added by DotNetKicks
8/17/2022 4:08:36 PM

259 Views

By default, JSON Web Tokens (JWTs) are base64url encoded JSON objects signed using a digital signing algorithm thanks to JSON Web Signatures (JWS). JWS assures integrity, authentication, and non-repudiation, but it does not provide you with confidentiality. Anyone can read the payload, which can be an issue if the token holds any sort of sensitive data.


0 comments