Super interesting about how JWT works.
I wonder how a man in the middle attack works in regards to this
nice to see you here, Uriel.
- default to HTTPS
- server validates the JWT signature each time, so it's difficult to spoof
- encrypt JWT (https://www.rfc-editor.org/rfc/rfc7516)
- some best practices: https://newsletter.systemdesign.one/i/162682441/jwt-security
Thanks Neo!
I'll take a look :)
For your security, we need to re-authenticate you.
Click the link we sent to , or click here to sign in.
Super interesting about how JWT works.
I wonder how a man in the middle attack works in regards to this
nice to see you here, Uriel.
- default to HTTPS
- server validates the JWT signature each time, so it's difficult to spoof
- encrypt JWT (https://www.rfc-editor.org/rfc/rfc7516)
- some best practices: https://newsletter.systemdesign.one/i/162682441/jwt-security
Thanks Neo!
I'll take a look :)