From d4533345fe1cde3e574affc32a03b4ef8e57745e Mon Sep 17 00:00:00 2001 From: Yigit Sever Date: Thu, 15 Apr 2021 23:41:53 +0300 Subject: Don't actually ignore the useful public --- site/public/jwt/index.html | 179 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 179 insertions(+) create mode 100644 site/public/jwt/index.html (limited to 'site/public/jwt/index.html') diff --git a/site/public/jwt/index.html b/site/public/jwt/index.html new file mode 100644 index 0000000..d06d45a --- /dev/null +++ b/site/public/jwt/index.html @@ -0,0 +1,179 @@ + + + + + + JWT | Gradecoin + + + + + + + + + + + + + + +
+ + + + + + + + +
+ + +
+ + + + + +
+
+ +
+ How? +
+ + +
+ Algorithm +
+ + + + + +
+
+ + + +
+ +
JSON Web Token Documentation
+
+

JSON Web Tokens are representations of claims, or authorization proofs that fit into the Header of HTTP requests.

+
+

How?

+

JWTs are used as the MAC of operations that require authorization:

+ +

They are send alongside the JSON request body in the Header;

+
+Authorization: Bearer aaaaaa.bbbbbb.ccccc
+
+

Gradecoin uses 3 fields for the JWTs;

+
+{
+"tha": "Hash of the payload, check invididual references",
+"iat": "Issued At, Unix Time",
+"exp": "Expiration Time, epoch"
+}
+
+ +

Algorithm

+

We are using RS256, RSASSA-PKCS1-v1_5 using SHA-256. The JWTs you encode with your private RSA key will be decoded using the public key you have authenticated with. You can see how the process works here.

+

References

+ + + +
+ + + +
+ + + + + + + + -- cgit v1.2.3-70-g09d2