JWT Task

The JWT task allows you to generate a JWT with customisable headers & payload, with a choice of encryption and/or signing algorithms.

Signed Tokens (rs256 & rs512)

The rs256 & rs512 algorithms will give you an unencrypted token signed using the assymettric RSA algorithm. You should specify the private key in the Signing Secret field, then anyone with the corresponding public key will be able to verify your token.

Signed & Encrypted Tokens (aes128-hs256)

The aes128-hs256 algorithm will give you a token which is first signed using the symmettric HS256 algorithm, then encrypted with AES128. You should specify the 256 bit (32 character) HS256 signing key in the Signing Secret field and the 128 bit (16 character) AES128 encryption key in the Encryption Secret field. Because these are both symmettric algorithms, the same encryption and signing keys must be used to decrypt and verify tokens generated using this algorithm.

Unsigned Tokens

The none algorithm will give you a token which is neither signed nor encrypted.