Menu
JSON Web Tokens for secure transmission. Use for authentication.
Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.
Based on SOC occupation classification
| name | jwt |
| description | JSON Web Tokens for secure transmission. Use for authentication. |
JWT is a compact, URL-safe means of representing claims to be transferred between two parties. The claims are encoded as a JSON object that is used as the payload of a JSON Web Signature (JWS) or JSON Web Encryption (JWE).
Header.Payload.Signature
// Header
{
"alg": "RS256",
"typ": "JWT"
}
// Payload (Claims)
{
"sub": "1234567890", // Subject (User ID)
"name": "John Doe",
"iat": 1516239022, // Issued At
"exp": 1516242622, // Expiration
"role": "admin"
}
// Signature
HMACSHA256(
base64UrlEncode(header) + "." +
base64UrlEncode(payload),
secret)
iss (issuer), exp (expiration), sub (subject), aud (audience).role, tenant_id).Do:
algorithms=['RS256']) in your verifier to prevent None alg attacks.Don't:
| Error | Cause | Solution |
|---|---|---|
TokenExpiredError | exp time passed. | Refresh the token using a Refresh Token. |
JsonWebTokenError | Malformed or Signature mismatch. | Check secret/public key and token integrity. |
Android Studio IDE with emulator and profiler. Use for Android development.
Atom hackable text editor from GitHub. Use for extensible editing.
Babel JavaScript compiler for compatibility. Use for transpiling.
Biome fast formatter and linter. Use for code quality.
Bitbucket Git repository hosting with Pipelines. Use for Atlassian teams.
Confluence team documentation platform. Use for documentation.