JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA or ECDSA . Although JWTs can be encrypted to also provide secrecy between parties, we will focus on signed tokens.
JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA or ECDSA . Although JWTs can be encrypted to also provide secrecy between parties, we will focus on signed tokens.