loading...

re: A Brief Introduction to Securing Applications with JWT VIEW POST

TOP OF THREAD FULL DISCUSSION
re: How can JWT be secure, if I can see the content inside it regardless of having the SECRET KEY? jwt.io/#debugger-io
 

The data in JWT isn’t secure, it’s just signed so you can know whether to trust it. It’s also possible to encrypt data before putting it into a JWT...but if it’s really so sensitive it probably doesn’t belong in there anyway.

code of conduct - report abuse