current community

your communities

more stack exchange communities

company blog
Stack Exchange Inbox Reputation and Badges
tour help

Tagged Questions

JSON Web Token (JWT, pronounced "jot") is an emerging type of token-based authentication used in space-constrained environments such as HTTP Authorization headers.

learn more… | top users | synonyms

3
votes
0answers
98 views

Generating public/private RSA key pair programmatically, using it for JWTs

In my app I'm using JSON Web Tokens for authentication purposes, using the pyjwt library. Instead of using static keys and/or worrying about key distribution, the server generates a public/private key ...
1
vote
0answers
116 views

“RESTful” node.js server using express

I have attempted to construct a simple RESTful node server that allows for user authentication using passport and jwt: ...
0
votes
1answer
467 views

Simple login using ReactJS

I have successfully implemented a simple login page using ReactJS by coding it all in JavaScript (a flexibility that I like) but I am still a beginner in React and would like to know whether this is ...
0
votes
2answers
68 views

Logging in with multiple types of info

I'm trying to let users log in with multiple columns (e.g. ID, email, phone). If one fails, it checks the next column. I would like to minimise my if and ...
7
votes
1answer
265 views

OAuth2 Implementation

I am trying to implement an OAuth2 service. I am not planning to use it anytime soon (like will write unit tests). This is my fun project I do to practice. I have used the python_jwt library to create ...
1
vote
0answers
2k views

JWT - Simple API example

I have created this fake API just because I want to learn how to use JWT. It is a simple unsigned token exchange with two methods call: login and adminPassword. I've used https://github.com/lcobucci/...
1
vote
0answers
836 views

JWT with Firebase php-jwt

So my web app requires JWT authentication and I decided to make a mockup wrapper class for php-jwt before implementing it into my web app: ...
1
vote
1answer
66 views

Generic JWT Handler

I'm developing a Go REST service that uses JWT (JSON Web Tokens) for authentication. I've written a JWTHandler which validates the token using a Validation Handler. If validation succeeds, the ...
3
votes
0answers
575 views

Web API 2 - JWT with X509 certificate

I got my JWT generation working with X509 and wanted to ask if you would recommend any changes in respect to: Signing certificate storing / handling. Publishing for anonymous access public key ...
6
votes
1answer
4k views

Authentication with JWT

Please review my code for 'JWT' authentication. Are there any security issues? Where should I store the secret's key, DB or InMemory? What's a good 'JWT' Lifetime? Should I send the 'JWT' in Header ...
14
votes
1answer
18k views

Web API 2 authentication with JWT

Please review my code for bearer token (JWT) authentication of Web API 2 (Self Hosted using OWIN) Are there any security issues in the implementation? Quick overview: Token creation and validation ...