Y
Hacker News
new
|
ask
|
show
|
jobs
by
perlin
3478 days ago
With JSON web tokens (JWT), the client or server must know the secret key used to sign the token in order to validate it, but anyone can view its payload.