Posts

Showing posts from October, 2018

JWTs in ASP.NET Core 2.0

Image
A Quick Introduction to JWTs JSON Web Tokens, often shortened with JWTs, are gathering more and more popularity in the Web environment. It is an open standard that allows transmitting data in JSON object, in a compact and secure way. They are usually used in authentication and information exchange scenarios since the data transmitted between a source and a target are digitally signed so that they can be easily verified and trusted. For more, you can visit my previous blog here   Securing your web API There are many reasons you might choose to expose an API from your ASP.NET Core 2.0 app: supporting windows-based software, another web application, or maybe you’re building a SAAS product and want to give advanced users some mechanism to integrate with your platform. But clearly, the most common (and likely) scenario is that you want to build all, or some, of your application, using front-end Single Page Application frameworks such as ReactJS, Angular, or Aurelia. There ar...

JWT

Image
A Quick Introduction to JWTs JSON Web Tokens, often shortened with JWTs , are gathering more and more popularity in the Web environment. It is an open standard that allows transmitting data in JSON object , in a compact and secure way. They are usually used in authentication and information exchange scenarios, since the data transmitted between a source and a target are digitally signed so that they can be easily verified and trusted. JWTs Structured The JWTs are structured in three sections: The Header: this is a JSON object containing meta-information about the type of JWT and hash algorithm used to encrypt the data. The Payload: even this is a JSON object containing the actual data shared between source and target; these data are coded in claims, that is statements about an entity, typically the user. The Signature: this section allows to verify the integrity of the data, since it represents a digital signature based on the previous two sections. The three section...