JWT Functions

Overview

Allows for an additional layer of security using signed JWT. This plug-in may also be used to integrate with external systems using JWS.

Key Functionality and Features

  • jwtsign - Create a signed JWT using HS256, HS384, HS512, ES256, ES384, ES512, RS256, RS384, or RS512
  • jwtverify - Verify signed JWT
  • jwtgeneratesecretkey - Generate an Hmac-SHA key that can be used to sign a JWT using HS* algorithm
  • jwtdecode - Decode a JWT without verifying the signature

Uses JWTKs JJWT library: https://github.com/jwtk/jjwt

Anonymous
Parents Comment
  • Hi sid,

    I just submitted a new version, you should expect this in a few days.

    Not sure if it helps, but I also added new parameters to TokenOption and DecodeOptions: scsKeyId.

    This should automatically add the scs key and field as your  "kid" when signing, and use the "kid" to get the scs key and field when verifying.

    New token parameters

Children