awesome-repositories.com
Blog
awesome-repositories.com

Descoperă cele mai bune repository-uri open source cu căutare AI.

ExploreazăCăutări recomandateAlternative open-sourceSoftware self-hostedBlogHartă site
ProiectDespreCum realizăm clasamentulPresăServer MCP
LegalConfidențialitateTermeni
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
jwt avatar

jwt/ruby-jwt

0
View on GitHub↗
3,684 stele·375 fork-uri·Ruby·MIT·3 vizualizăriruby-jwt.org↗

Ruby Jwt

This is a Ruby implementation library for encoding, decoding, and verifying JSON Web Tokens according to the RFC 7519 standard. It provides the primary tools for token signing and encoding, integrity verification, and the extraction of payloads and headers.

The project includes a comprehensive JSON Web Key manager for importing, exporting, and resolving key sets. This system facilitates the generation of key thumbprints and the resolution of specific verification keys based on token identifiers.

The library covers a wide range of security validation mechanisms, including the verification of token signatures via secret keys, public keys, or X.509 certificates. It implements a validation pipeline for reserved and custom claims, checking fields such as issuer, audience, expiration, issue time, and subject.

Extensibility is supported through a framework for integrating custom cryptographic algorithms and the ability to define custom token headers.

Features

  • JWT Authentications - Implements secure authentication and session management using signed JSON Web Tokens with custom claims.
  • JWT Signing and Verification - Implements full verification of JWT signatures and claims to ensure token integrity.
  • JSON Web Key Management - Provides a full system for importing, exporting, and resolving cryptographic keys using the JWK standard.
  • JWT Integrity Validations - Validates the cryptographic signature and integrity of JSON Web Tokens using configured signing methods and keys.
  • Multi-Issuer Configurations - Verifies that the issuer claim in a token matches an expected value to confirm the identity of the provider.
  • JWK Set Organization - Provides a system for organizing collections of JSON Web Keys to facilitate discovery and rotation.
  • Digital Signature Verifications - Implements general-purpose verification of cryptographic signatures using public keys, secret keys, or certificates to ensure data integrity.
  • Token Subject Specifications - Validates that the subject claim in a token is present and meets the required identity criteria.
  • Key Resolution - Identifies and retrieves the specific public key from a key set required to verify a token signature.
  • JWT Claim Validation - Implements a validation pipeline to verify reserved claims such as expiration, issuer, and audience.
  • Claim Validators - Verifies both standard reserved claims and custom claims to ensure token validity and intent.
  • Issuer and Audience Validators - Validates the audience claim in a token to ensure it matches the expected recipient.
  • JWT Implementation Libraries - Provides a full Ruby implementation for encoding, decoding, and verifying JSON Web Tokens according to RFC 7519.
  • Token Signature Verification - Validates the authenticity of a token using certificates or key finders to ensure data integrity.
  • Token Claim Verifications - A verification process ensuring the issued-at claim in a token is valid and the timestamp is correct.
  • Expiring Tokens - Detects when a token has passed its expiration date to block the use of expired credentials.
  • API Access Security - Provides mechanisms to secure API access by validating signed tokens to ensure requests originate from authorized systems.
  • Custom Algorithm Extensions - Allows the integration of custom signing and verification logic through a standard algorithm extension framework.
  • Certificate Verification - Validates token signatures using X.509 certificates provided in the header against trusted root authorities.
  • External Identity Provider Integration - Provides helpers for verifying tokens issued by third-party identity services by resolving key sets and validating claims.
  • JSON Web Key Imports - Provides utilities for loading and parsing JSON Web Key sets into cryptographic key objects.
  • Key Thumbprinting - Calculates deterministic, URL-safe hashes of web keys to create unique identifiers.
  • JWT Decoders - Extracts the payload and header from a token without requiring cryptographic signature verification.
  • Cryptographic Key Resolvers - Retrieves the correct cryptographic key for a token by matching the key identifier in the header.
  • Key Resolution Services - A utility for retrieving the specific verification key associated with a token identifier to enable cryptographic validation.
  • OAuth Token Management - Provides tools for managing the lifecycle of tokens used to authenticate users and verify identity claims.
  • Secure Token Exchange - Enables the exchange of trusted data between services using signed or encrypted tokens to prevent tampering.
  • Token Validation - Checks the token identifier (jti) claim to prevent token reuse or spoofing attacks.
  • Authentication and OAuth - Implements JSON Web Token standards in Ruby.

Istoric stele

Graficul istoricului de stele pentru jwt/ruby-jwtGraficul istoricului de stele pentru jwt/ruby-jwt

Căutare AI

Explorează mai multe repository-uri excelente

Descrie ce ai nevoie în limbaj simplu — AI-ul sortează mii de proiecte open source selectate în funcție de relevanță.

Start searching with AI

Alternative open-source pentru Ruby Jwt

Proiecte open-source similare, clasificate după numărul de funcționalități comune cu Ruby Jwt.
  • jwtk/jjwtAvatar jwtk

    jwtk/jjwt

    11,085Vezi pe GitHub↗

    This is a Java library and framework for creating, parsing, and validating JSON Web Tokens within Java and Android applications. It provides a comprehensive toolkit for handling signed and encrypted tokens, including the generation and verification of JWS and JWE objects. The project differentiates itself through a flexible architecture that supports pluggable JSON serialization and custom signature algorithms. It includes a dedicated key manager for generating, encoding, and organizing JSON Web Keys and key sets, as well as support for hardware security module integration. The library cover

    Java
    Vezi pe GitHub↗11,085
  • authlib/authlibAvatar authlib

    authlib/authlib

    5,346Vezi pe GitHub↗

    Authlib is a comprehensive Python library for building and integrating OAuth 1.0, OAuth 2.0, and OpenID Connect clients and servers. It provides a unified set of tools to manage authentication and authorization flows, allowing applications to either act as a client connecting to external identity providers or as a provider issuing tokens and managing user identities. The project distinguishes itself through a full implementation of the JOSE standards, offering a suite of cryptographic tools for generating, signing, encrypting, and validating JSON Web Tokens, Signatures, Encryption, and Keys.

    Pythondjangoflaskjose
    Vezi pe GitHub↗5,346
  • dgrijalva/jwt-goAvatar dgrijalva

    dgrijalva/jwt-go

    10,747Vezi pe GitHub↗

    jwt-go is a Go library for creating, parsing, and verifying signed JSON Web Tokens. It provides a pluggable signing interface that supports multiple cryptographic algorithms, including HMAC, RSA, ECDSA, and RSA-PSS, allowing tokens to be signed and verified with different security properties. The library is built around a signing-method registry and a token-parsing pipeline that splits a JWT string into its header, payload, and signature segments for validation. It includes typed error classification for common failure modes such as invalid signatures, expired tokens, or malformed input, and

    Go
    Vezi pe GitHub↗10,747
  • auth0/java-jwtAvatar auth0

    auth0/java-jwt

    6,227Vezi pe GitHub↗

    This is a Java library for creating and verifying JSON Web Tokens (JWTs), supporting multiple cryptographic signing algorithms including HMAC, RSA, and ECDSA. The library provides a builder pattern for constructing tokens with custom claims and algorithm selection, and offers separate verification methods that check signatures and validate standard claims such as expiration, issuer, and audience. The library abstracts cryptographic algorithms behind a common interface, allowing pluggable signing and verification without coupling token creation to a specific algorithm. Tokens are represented a

    Javadx-sdkjavajwt
    Vezi pe GitHub↗6,227
Vezi toate cele 30 alternative pentru Ruby Jwt→

Întrebări frecvente

Ce face jwt/ruby-jwt?

This is a Ruby implementation library for encoding, decoding, and verifying JSON Web Tokens according to the RFC 7519 standard. It provides the primary tools for token signing and encoding, integrity verification, and the extraction of payloads and headers.

Care sunt principalele funcționalități ale jwt/ruby-jwt?

Principalele funcționalități ale jwt/ruby-jwt sunt: JWT Authentications, JWT Signing and Verification, JSON Web Key Management, JWT Integrity Validations, Multi-Issuer Configurations, JWK Set Organization, Digital Signature Verifications, Token Subject Specifications.

Care sunt câteva alternative open-source pentru jwt/ruby-jwt?

Alternativele open-source pentru jwt/ruby-jwt includ: jwtk/jjwt — This is a Java library and framework for creating, parsing, and validating JSON Web Tokens within Java and Android… authlib/authlib — Authlib is a comprehensive Python library for building and integrating OAuth 1.0, OAuth 2.0, and OpenID Connect… dgrijalva/jwt-go — jwt-go is a Go library for creating, parsing, and verifying signed JSON Web Tokens. It provides a pluggable signing… auth0/java-jwt — This is a Java library for creating and verifying JSON Web Tokens (JWTs), supporting multiple cryptographic signing… auth0/express-jwt — express-jwt is a middleware for Express applications that validates JSON Web Tokens to secure routes and authenticate… teamhanko/hanko — Hanko is an open-source identity provider and customer identity and access management system. It serves as a passkey…