So I am trying to use JSON web tokens for authentication and am struggling trying to figure out how to attach them to a header and send them on a request. I was trying to use https://github.com/au...

I am still getting a hang of using curl for testing API request from the terminal. I have a particular issue with formatting because the API request I am attempting requires a JWT Token to be passe...

I am trying to understand how to verify signatures of JWT tokens using the .NET Framework. I am using the token found at https://jwt.io/ . If I understand how this is supposed to work, I can use ...

I'm implementing stateless REST API via Json Web Tokens (JWT). At the moment, I'm wondering what is the best approach to pass the user data to the front end. Those are the fields I would need to ac...

I am currently working on a Django project that wants to replace and disable Django's traditional cookie-based sessions and replace it with JSON web tokens as a means of user authentication for a u...

I know this question is not anything new, possibly already been discuss all over the internet. I'm new to it but after some study, I agree that it is safe as anonymous could sniff the Token but un...

I am a fairly novice c++ programmer (I'm still in college so I suppose I'm a fairly novice programmer in general) and I am trying to generate a JWT in c++. I am able to generate and encode a header...

I know there are already many posts about Oauth, Oauth2, JWT, etc.. I have read many and I more confused than ever so I am looking for some clarification. I will propose my view on the subject and ...

I am implementing OAuth 2.0 with JWT in my application and am having trouble deciding what to set as my aud claim as. A user will "login" to my client via my authentication server to gain access to...

Firstly, what's a good method of generating a secret key? I should punch in a lot of random keys on my keyboard to generate one, but there must be a better solution to this. Explain the way to gene...

I understand that JWT are stateless tokens that store signed information about the client's claim and are passed to a server via the Authorization HTTP header. My question is, why do we need JWT ...

I am attempting to create a token validation method that returns true if a JWT token is valid based on the signature. I don't think I really need to validate everything in the token but what actual...

I'm fairly new to token based authorization. I'm trying to find the flaws in a custom expiration/token-refresh scheme. I have a basic JWT auth setup in an Express API; I'm setting the JWT expirati...

I want to implement the Sliding expiration concept with json web tokens using angular, nodejs and express-jwt. I'm a little confused on how to do this, and am struggling to find any example of refr...

I have APIs that require Azure AD bearer authentication. public void ConfigureAuth(IAppBuilder app) { app.UseWindowsAzureActiveDirectoryBearerAuthentication( new WindowsAzureActiveDirectoryBeare...