re: Be careful of the JWT hype train VIEW POST

VIEW PARENT COMMENT VIEW FULL DISCUSSION

That’s not encryption, that’s just signing. The data in a JWT is base64-url encoded, but otherwise easily readable.

There is a standard for JWT encryption, but that’s a whole extra level of pain.

code of conduct - report abuse