JSON Web Token (JWT)

JWT is a compact, URL‑safe token for conveying claims between parties, often signed and optionally encrypted.

#auth#tokens#rfc

Last updated: 2025-09-02T00:00:00.000Z

Evidence

RFC RFC 7519 Normative evidence
www.rfc-editor.org

More context

Correct issuer, audience, lifetime, and algorithm validation are essential to prevent misuse.