JSON Web Token
JSON Web Token
📖 Definition
JWT is a compact, URL-safe token format used to securely transmit information between parties. It consists of three parts: Header, Payload, and Signature, commonly used for authentication and information exchange.
🔗 How Higress Uses This
Higress has a built-in JWT authentication plugin, supporting JWT issuance verification, claims extraction, token refresh, and other functions, enabling unified authentication at the gateway layer.
💡 Examples
- 1 JWT contains claim information such as user ID and roles
- 2 Use RS256 algorithm signature to ensure tokens are not tampered with
- 3 JWT's exp claim defines token expiration time
⚙️ Configuration Example
YAML
# Higress JWT Authentication Configuration
plugins:
- name: jwt-auth
config:
issuer: "https://auth.example.com"
jwks_uri: "https://auth.example.com/.well-known/jwks.json"🔄 Related Terms
❓ FAQ
What is JSON Web Token?
JWT is a compact, URL-safe token format used to securely transmit information between parties. It consists of three parts: Header, Payload, and Signature, commonly used for authentication and information exchange.
How does Higress support JSON Web Token?
Higress has a built-in JWT authentication plugin, supporting JWT issuance verification, claims extraction, token refresh, and other functions, enabling unified authentication at the gateway layer.
Learn More About Higress
Explore more Higress features and best practices