Home > AI > Backend > SpringBoot > spring-security-oauth2 >

JWT Token

spring-security-oauth2 shark 1 min read
  • user_id – a UUID for the user
  • cid/client_id – unique name for the client. Unique to the system it runs on.
  • scope – a list of permissions that this client has on behalf of this user
  • aud – the audience, who this token is intended for.
"jti" (JWT ID) Claim

   The "jti" (JWT ID) claim provides a unique identifier for the JWT.
   The identifier value MUST be assigned in a manner that ensures that
   there is a negligible probability that the same value will be
   accidentally assigned to a different data object.  The "jti" claim
   can be used to prevent the JWT from being replayed.  The "jti" value
   is a case-sensitive string.  Use of this claim is OPTIONAL.
Share this post:
Related posts:

Leave a Reply