REST:JWT:修订间差异

来自WHY42
imported>Soleverlee
以“JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON obj...”为内容创建页面
 
imported>Soleverlee
Soleverlee移动页面JWTREST:JWT,不留重定向
 
(没有差异)

2016年9月18日 (日) 03:03的最新版本

JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed. JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA.

Let's explain some concepts of this definition further.

  • Compact: Because of its smaller size, JWTs can be sent through an URL, POST parameter, or inside an HTTP header. Additionally, the smaller size means transmission is fast.
  • Self-contained: The payload contains all the required information about the user, avoiding the need to query the database more than once.

for more refer:https://jwt.io/introduction/