Un token JWT est crypté avec un algorithme unidirectionnel. code example
Example 1: jwt
let jwt = require('jsonwebtoken');
const SUPER_SECRET_TOKEN = "My_Secret_Token";
server.post('/',(req,res)=>{
res.setHeader('Content-Type', 'application/json');
var token = jwt.sign({message: "Hello"}, SUPER_SECRET_TOKEN, { expiresIn: '5m' , noTimestamp: true });
var result = jwt.verify(token, SUPER_SECRET_TOKEN);
res.end(JSON.stringify({error: false, data: result}));
});
Example 2: jwt
HMACSHA256(
base64UrlEncode(header) + "." +
base64UrlEncode(payload),
) secret base64 encoded