What the Hell is a JWT Token??

This content originally appeared on DEV Community and was authored by Awal Hossain

When I first heard the jwt token name, it gave me a headache. I can still remember how terrified I was that day. I was telling myself what the hell is this new thing that I need to implement in order to verify the user and api.

However, after working on a few projects, I feel forced into making this statement. This jwt token is an excellent approach to validate any user against a database.

What is jwt token??

Jwt is an abbreviation for Json Web Token. A JWT is a mechanism to verify the owner/user. It’s encoded. When a server receives a JWT, it can guarantee the data it contains can be trusted because it’s signed by the source. No middleman can modify a JWT once it’s sent.

Creating JWT token

If you take a look at the above picture closely, you will get an idea how developers generate the jwt token.
When a developer creates a JWT token with a method called jwt.sign(), it contains elements such as the user id, JWT_SECRET, and expiration date. JWT_SECRET helps to make a sign token that won't work anywhere unless the secret is given. The expiration date will determine how long this token will be valid.
After successfully generating a jwt token, All you have to do now is transmit the jwt token to the frontend and save it in localstorage or Cookie.
.

How does JWT Token work ?

Let's have a look at how it works now. Let's say you need to access your data from the dashboard, but how will that website validate your identity and prevent a hacker from gaining access to your information?

Simply said, the provided jwt token will be checked against their database.
If that website discovers a user id associated with the jwt token, it will grant you access to the dashboard.

So, I used the jwt.verify() function, which accepts two parameters: token and JWT SECRET, to check the jwt token. It will allow you to enter if both input values are true.

Take a look at the above picture to better understand.

This content originally appeared on DEV Community and was authored by Awal Hossain

Print Share Comment Cite Upload Translate Updates

APA

Awal Hossain | Sciencx (2022-04-15T17:18:47+00:00) What the Hell is a JWT Token??. Retrieved from https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/

MLA

" » What the Hell is a JWT Token??." Awal Hossain | Sciencx - Friday April 15, 2022, https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/

HARVARD

Awal Hossain | Sciencx Friday April 15, 2022 » What the Hell is a JWT Token??., viewed ,<https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/>

VANCOUVER

Awal Hossain | Sciencx - » What the Hell is a JWT Token??. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/

CHICAGO

" » What the Hell is a JWT Token??." Awal Hossain | Sciencx - Accessed . https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/

IEEE

" » What the Hell is a JWT Token??." Awal Hossain | Sciencx [Online]. Available: https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/. [Accessed: ]

rf:citation

» What the Hell is a JWT Token?? | Awal Hossain | Sciencx | https://www.scien.cx/2022/04/15/what-the-hell-is-a-jwt-token/ |

Please log in to upload a file.

There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.