Home
Resources
Courses
JWT Security Best Practice

JWT Security Best Practice

In this 1 part online course we outline some best practices for using these kinds of JSON-based tokens, so that you can maintain a high level of security in your applications. These practices are based on community standards written down in RFCs as well as our own experience from working with JWTs.

What was that JWT again?
JWTs used as Access Tokens
What algorithms to use
When to validate the token
Checking the issuer and audience
Dealing with expiration, issued time and clock skew
How to work with signatures
Pairwise Pseudonymous Identifiers (PPID)

Related resources

JWT Security Best Practices
Best Practices - OAuth for SPAs
Best Practices - OAuth for Mobile Apps

Back to course

JWT Security Best Practice

Related resources

Course Outline

JWT Security Best Practice

Be up and running in minutes

Evaluate the Fit for Your Use Case

Speak to an Identity Specialist

Found results for ""

Concepts

Security Architecture

Single Sign-On

Multi-Factor Authentication

Claims & Scopes

Open Banking, PSD2 & GDPR

OpenID Connect

OAuth 2.0

Supported standards

API Security

Getting Started

How-tos

Code Examples

Hypermedia Authentication API

JWT Security Best Practice

Related resources

Course Outline

JWT Security Best Practice