ποΈ
JSON Web Token (JWT)
Session Management
A compact token apps use to prove identity or permissions.
Definition
A JWT is a small token (a long text string) that an app can send to prove who you are or what youβre allowed to do.
In plain English
A compact token apps use to prove identity or permissions.
Why this matters
Why it matters: If a JWT is stolen, someone can act as you until it expires.
Example
Example: A mobile app sends a JWT to an API to fetch your account data.