I'm trying to verify a JWT (session cookie) following the instructions here guided by this sample implementation in Python using the jose package (although I'm open to other node packages). Why? I'...

Just learning about JOSE and I understand that JWE is for encryption and JWS is for signing. What I don't seem to be able to find examples of is a payload that is both encrypted and signed. Let's...

I was trying to use jose library for authentication for one of my flask apps. using the import statement as follows from jose import jwt But it throws following An error, Traceback (most recent ca...

What is the difference between JOSE, JWA, JWE, JWK, JWS and JWT and how are they related to one another?

I wrote a package let's call it commons and another project that imports it. I do not want to import the whole package but only one subpath of this package. import { client } from '@commons/clients...

I don't understand why JWS unprotected headers exist. For some context: a JWS unprotected header contains parameters that are not integrity protected and can only be used per-signature with JSON Se...

I am struggling to understand how to use the npm jose module (https://www.npmjs.com/package/jose) to create and verify signed JWT tokens in my Node application. My scenario is this: I want to sign ...

The RFC7518 has a list of algorithms values used in JWT. However there is no value for EdDSA, such as Ed25519. Also Ed25519 is not accepted as a valid value when verifying in Jose. What is the corr...

Here is the command I used on ubuntu 20.x to generate key pair of EdDSA 25519 for JOSE/NODEJS (14.16) app: $ssh-keygen -o -a 100 -t ed25519 -f ~/.ssh/id-ed25519 -C myemail_address Here is the priv...

I want to use token based authentication with JWT (Signed and encrypted if possible). I use NodeJS in server side. I am trying to use this node-jose module : https://github.com/cisco/node-jose I...

I'm a newbie in jwt and after read a lot of web pages I've not found examples of how to generate a token (signed and encrypted) with keypairs generated from this website https://mkjwk.org/. I think...

I've been on quite an adventure to get JWT working on DotNet core 2.0 (now reaching final release today). There is a ton of documentation, but all the sample code seems to be using deprecated APIs ...

I am trying to implement simple JOSE encrypt and decrypt functions using node-jose. My code is as follows (written using Node 8.2.1) const { JWE } = require('node-jose'); const jose = (publicKey...