Hacker News new | ask | show | jobs
by fanf2 3260 days ago
jwt-go says right in the readme that it is not encrypted:

>> It's important to know that JWT does not provide encryption, which means anyone who has access to the token can read its contents. <<
1 comments
sAbakumoff 3260 days ago
Okay, let's say that 3rd party read the user id which my app keeps in a JWT token. What would they do with it?
link