Note: Base64 is actually limited to encoding only, and not an encryption algorithm. Whenever you hear me say "encryption" for base64, I mean "encoding" 😊
I reasoned JWE opaque tokens are the way to go as well as setting audience claim in JWT creation is the X-FOR header that strongly binds the client origin .
Great video... As a developer, I want to know what are the best practices to generate and verify JWT tokens. Like, generate secrets, how to store them and so on. I would love a video dedicated to that.
Thanks for this! I didn't know about removing the equal signs at the end of the base64 encoding, I always assumed it was part of the encoding so I leave it as is. I also didn't know the JWT is comprised of so many layers of base64 encoding on top of each other. Also, at 30:29 you piped the encryption result into "openssl base64", what is the difference between "openssl base64" and just "base64"? For example when you encoded the header and payload you simply piped them into "base64" and not "openssl base64".
Note: Base64 is actually limited to encoding only, and not an encryption algorithm. Whenever you hear me say "encryption" for base64, I mean "encoding" 😊
You have such great content. Looking forward to those RSA and Diffie-Hellman videos!
I reasoned JWE opaque tokens are the way to go as well as setting audience claim in JWT creation is the X-FOR header that strongly binds the client origin .
Great video... As a developer, I want to know what are the best practices to generate and verify JWT tokens. Like, generate secrets, how to store them and so on. I would love a video dedicated to that.
Thanks for this! I didn't know about removing the equal signs at the end of the base64 encoding, I always assumed it was part of the encoding so I leave it as is. I also didn't know the JWT is comprised of so many layers of base64 encoding on top of each other. Also, at 30:29 you piped the encryption result into "openssl base64", what is the difference between "openssl base64" and just "base64"? For example when you encoded the header and payload you simply piped them into "base64" and not "openssl base64".
There is no difference, just two different ways to do it 😁. Either works!
Thanks for the break down, keep it up!
Dope vid fam. Saw this from ur post
Very good 👏