burnburn
commented
8 years ago Thanks Brian. I'll put the key into the text for those who might want to verify it.
Closed bsletten closed 8 years ago
burnburn
commented
8 years ago Thanks Brian. I'll put the key into the text for those who might want to verify it.
I cleaned up the JWT example. I added a header section, moved the alg and type to that as is more idiomatic and removed the key from the signature as that wouldn't travel with the credential. The signature would be submitted to the issuer to verify. The signature should verify against the previous key of "qwertyuiopasdfghjklzxcvbnm123456". You can combine the lines in the signature and verify it at https://jwt.io/#debugger-io.