JSON Web Tokens crash course - JWT tokens explained

preview_player
Показать описание

00:00 Introduction to JSON Web tokens
01:42 The purpose of digital signatures with JWTs
03:49 How to create digital signatures
08:37 Types of JWTs: JSON Web Signature vs JSON Web Encryption
12:50 JWTs in action: server to server communication
13:58 Using JWTs for client side sessions
17:17 Using JWTs with OAuth2, OpenID Connect and single sign on (SSO)
18:25 Using JSON Web Encryption (JWE) for end-to-end encryption
22:00 Building blocks of a JSON Web Signature (JWS) token
22:56 JWT JOSE header
25:38 JWT claim set explained
26:47 How to create a JSON Web Signature
31:54 JWT compact serialization format
34:22 HMAC vs RSA-based JSON Web Signature Tokens
36:40 HMAC-based JWT tokens
38:50 RSA-based JWT tokens
40:17 How to implement a server to server communication with RSA JWT tokens
44:22 Summary and wrap up

In this video we cover what JSON Web Tokens are, what the difference between JSON Web Encryption (JWE) and JSON Web Signature (JWS) and for what these tokens are typically used.
  1. Jan Goebel
  2. json web token
  3. json-web-token
  4. jwt
  5. json web signature
  6. json-web-signature
Рекомендации по теме
JSON Web Tokens 0:46:46

JSON Web Tokens crash course - JWT tokens explained

Session vs Token 0:02:18

Session vs Token Authentication in 100 Seconds

Why is JWT 0:05:14

Why is JWT popular?

JWT - JSON 0:57:01

JWT - JSON Web Token Crash Course (NodeJS & Postgres)

Learn JWT in 0:10:20

Learn JWT in 10 Minutes with Express, Node, and Cookie Parser

JWT Authentication with 1:29:11

JWT Authentication with Node Crash Course

What are JSON 1:41:00

What are JSON Web Tokens? JWT Auth Explained [Tutorial]

Cracking JSON Web 0:14:34

Cracking JSON Web Tokens

JWT - JSON 1:47:43

JWT - JSON Web Token Crash Course (NodeJS)

How Does JWT 0:11:27

How Does JWT Authentication Work? (JSON Web Token) | Tokens vs Sessions

What is a 0:10:37

What is a JWT (JSON Web Token) and why your REST API needs it

JWT Authentication - 0:18:28

JWT Authentication - Beginners Guide With Real Application

JWT Authentication Tutorial 0:27:36

JWT Authentication Tutorial - Node.js

💥 JSON Web 0:04:03

💥 JSON Web Tokens In a Nutshell

JWT Authentication Explained 0:07:52

JWT Authentication Explained

What is JWT 0:10:34

What is JWT ? JSON Web Token Explained

JSON Web Tokens 0:53:14

JSON Web Tokens Suck

Cookies, Sessions, JSON 0:46:41

Cookies, Sessions, JSON Web Tokens (JWT) and More 🍪🔐

Difference between cookies, 0:11:53

Difference between cookies, session and tokens

Golang Gin Framework 0:09:47

Golang Gin Framework Crash Course 09 | Setting up a JSON Web Token (JWT) Authorization Middleware

Spring Security Crash 1:04:39

Spring Security Crash Course | JWT Authentication and Authorization in Spring Boot 3.1 [NEW] [2023]

Don’t Use JWT 0:01:00

Don’t Use JWT for Login Sessions

What is JWT 0:26:12

What is JWT token and JWT vs Sessions

JSON Web Tokens 0:26:29

JSON Web Tokens (JWT) in .NET 6 Web API 🔒 - User Registration / Login / Authentication

Комментарии
Автор

Let me know what you think about this video.
Also if you have any video ideas, please post them here 👍

jgoebel
Автор

absolutely one of the best jwt videos or explanations in general I have come across. the entire time I had "ah-ha" moments of realization and understanding. Currently a student at Full-Stack Academy and we just had a lecture on this...you really tied it together for me thank you my friend

jakegoldstein
Автор

Awesome content. A video on JWE please.

shonzuhleezaycyclist
Автор

Hello Jan, how to generate PS256 signed payload using python?

Taragurung
Автор

Just to answer the question in min 12: Yes, a JWE video would be great (if you haven't already done it)

serdar.d
Автор

Can I use jwt with "server to server communication" while using the API gateway with microservices?

beratdinckan
Автор

was great, the best way to teach with examples

rezashadi
Автор

So I watched this entire video again. So it seems, json web signatures are really only good for making sure content hasn't been changed (when two parties have shared key), as the signature key will also need to changed.

I didn't quite understand how json web signatures were useful with the login and redis example (though I am still learning the basics of web development). I will try watching that part again and see if it clicks.

PyMoondra
Автор

Excellent video. You cleared so much confusion I had.

abdulazeez.
Автор

Do you know of any C# examples for signing a Jwt with the private key?

DavidSmith-btmq
Автор

Great overview. Very well organized and explained. Helped fill in some of the gaps in my JWT understanding. Thanks

spirosmantzavinos
Автор

Great content, thanks a lot! Subscribed :) Danke <3

serjtubin
Автор

Many thanks for this content, that's gold knowledge. It helped me a ton. Congrats for the good job with it

IranzinhoBRG
Автор

this is really good... can i be cheeky and ask how to get ahold of the diagrams?

johnm
Автор

A very useful video to refresh the security concepts involved in JWT

massimodaros
Автор

can you explain adavantage of using RSAA over HMAC in terms of Vulnerability ?

hrithikkale
Автор

Thank you very much for this amazing series. Great content Jan!

CatainaLopez
Автор

Well Explained Structure, I recommend you guys to watch it.

johncarlofababeir
Автор

Thank you for the explanation, very good presentation.

DieGame
Автор

Really informative video, keep going..

mhmdld