[JWT] JWT with HS256

The advantages of JWT over traditional session based validation is:

 it effectively removing all authentication logic from both our codebase and our database, and delegating it to a third-party service

 

In this post, we are going to see, how to create and verify HS256 JWT token.

 

Main idea behind HS256 JWT token is both Receiver and Producer should have the 'secret key'.

 

Create:

复制代码
var jwt = require('jsonwebtoken');


var secretKey = 'secret-key';

var payload = {
  name: 'Alice'
};


// create a JWT
var newToken = jwt.sign(payload, secretKey, {
  algorithm: 'HS256'
});

console.log('JWT created:', newToken);
复制代码

 

Verifiy:

复制代码
var jwt = require('jsonwebtoken');


// verify an existing JWT
var existingToken = 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYW1lIjoiQWxpY2UiLCJpYXQiOjE1MDI4ODkxOTF9._tPQtlZz2GhXHXATn5W09K4XCG0Z5LyEQqikJf3qXF8';


var secretKey = 'secret-key';


const verify = jwt.verify(existingToken, secretKey);


console.log('Decoded JWT:', verify);
复制代码

 

As long as it pass the verification, we can ensure that the user is authed.

posted @   Zhentiw  阅读(690)  评论(0编辑  收藏  举报
编辑推荐:
· SQL Server 2025 AI相关能力初探
· Linux系列:如何用 C#调用 C方法造成内存泄露
· AI与.NET技术实操系列(二):开始使用ML.NET
· 记一次.NET内存居高不下排查解决与启示
· 探究高空视频全景AR技术的实现原理
阅读排行:
· 阿里最新开源QwQ-32B,效果媲美deepseek-r1满血版,部署成本又又又降低了!
· Manus重磅发布:全球首款通用AI代理技术深度解析与实战指南
· 开源Multi-agent AI智能体框架aevatar.ai,欢迎大家贡献代码
· 被坑几百块钱后,我竟然真的恢复了删除的微信聊天记录!
· AI技术革命,工作效率10个最佳AI工具
历史上的今天:
2016-09-18 [Javascript] Manipulate the DOM with the classList API
2016-09-18 [Angular 2] Understanding OpaqueToken
2016-09-18 [Angular 2] Value Providers & @Inject
点击右上角即可分享
微信分享提示
AI IDE Trae