This is a Java library and framework for creating, parsing, and validating JSON Web Tokens within Java and Android applications. It provides a comprehensive toolkit for handling signed and encrypted tokens, including the generation and verification of JWS and JWE objects. The project differentiates itself through a flexible architecture that supports pluggable JSON serialization and custom signature algorithms. It includes a dedicated key manager for generating, encoding, and organizing JSON Web Keys and key sets, as well as support for hardware security module integration. The library cover
This is a PHP library for implementing JSON Web Tokens to securely encode, decode, and verify identity claims between parties. It provides the core utilities necessary to create signed tokens and validate their authenticity to ensure data integrity. The library includes a mechanism for caching remote JSON Web Key sets locally. This reduces network requests and optimizes the process of signature verification and key rotation. Capabilities cover a range of cryptographic operations, including HMAC-based signature verification and RSA-based asymmetric signing. It handles Base64Url encoding for t
PyJWT is a Python library for encoding, decoding, and verifying JSON Web Tokens (JWTs). It provides comprehensive JWT functionality including algorithm-agnostic signing and verification, supporting both symmetric HMAC shared-secret cryptography and asymmetric RSA/ECDSA public-key cryptography for flexible trust models. The library implements a claim-based validation pipeline that checks issuer, audience, expiration, and other time-based claims during token decoding, with configurable clock skew tolerance for distributed systems. It requires callers to explicitly specify allowed signing algori
This project is a JSON Web Token implementation library and toolkit for encoding, signing, and validating tokens. It provides the necessary functions to manage token claims and payloads for user authentication and authorization. The library supports both symmetric and asymmetric cryptography, allowing for the use of shared secrets or public-private key pairs. It enables the creation of signed tokens and the verification of their authenticity and integrity to prevent data tampering. The toolkit covers a broad range of identity and access control capabilities, including the embedding of custom
This project is a Node.js library for implementing and managing JSON Web Tokens. It functions as a cryptographic token manager and authentication tool used to sign, verify, and decode tokens to securely transmit claims between parties.
The main features of auth0/node-jsonwebtoken are: JSON Web Tokens, Asymmetric Signing, Symmetric Signing, Cryptographic Token Generators, JWT Authentication, JWT Claim Validation, Token Authentication, API Access Control.
Open-source alternatives to auth0/node-jsonwebtoken include: jwtk/jjwt — This is a Java library and framework for creating, parsing, and validating JSON Web Tokens within Java and Android… firebase/php-jwt — This is a PHP library for implementing JSON Web Tokens to securely encode, decode, and verify identity claims between… jpadilla/pyjwt — PyJWT is a Python library for encoding, decoding, and verifying JSON Web Tokens (JWTs). It provides comprehensive JWT… golang-jwt/jwt — This project is a JSON Web Token implementation library and toolkit for encoding, signing, and validating tokens. It… netlify/gotrue — GoTrue is a JWT identity provider and user management API. It functions as an OAuth 2.0 compliant server that handles… mastra-ai/mastra — Mastra is an orchestration framework designed for building, deploying, and managing autonomous AI agents and…