Answer the question
In order to leave comments, you need to log in
E
E
egyptForce2018-09-19 16:36:54
egyptForce, 2018-09-19 16:36:54
JWT authentication?
I just started sticking into jwt and, something is at an impasse. There is an authorization server and an application server. the user with his login and password goes to the authorization server, and he gives him a token in response. now with this token the user goes to the application server and makes api requests. for example, the user needs to get information about himself (name, list of rights, group in which he is a member, phone number, registration date, and other information). the application server looks at the token, understands that there is a user with a valid token in front of him, but now how should the server understand that the user with the token is in front of him, is it Vasya, and not Petya or Masha? or it turns out that all this information needs to be stored on the authorization server? pliz chew it and put it in your mouth.
1 answer(s)
@inoise
I
Ivan Shumov, 2018-09-19 @inoise
JWT is a token format. As a rule, it is used in OIDC (Open ID Connect) authentication. It is
very well described here https://www.youtube.com/watch?v=BdKmZ7mPNns
Similar questions
S
C
CanterGhost2018-11-10 01:31:28
WiFi module on HP pavilion 15 n060sr, what can I replace it with?
2Reply
A
A
I
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question