DEV Community

Cover image for JWT_
Nafisa Muntaha
Nafisa Muntaha

Posted on

JWT_

JWT

JWT stands for JSON Web Token. It is used to share security information between the client and server-side.

JWT is used just for authorization. Authorization is mainly what makes sure that the user which sends a request to the server is the same person who logged in. It means it is authorized if the user has access to the system.

JWT uses a web token for this authorization. It works like this-

  • It executes the authentication process. Then the server creates a JSON web token, which we know stands for JWT, and creates a secret key so the server can check with that if the user is invalid based on that secret key. And then it takes the web token and sends it to the browser and it will send a request to the server with the JWT token. It verifies it so that it can check if the secret key and user information are the same as before to know it is valid or invalid. And if the user is valid, it sends the response back to the server.

Top comments (0)