JWT
A signed token that carries user or session claims between systems.
What is JWT?
A JWT (JSON Web Token) is a compact, URL-safe token made of three Base64url-encoded parts — a header, a payload of claims, and a signature — separated by dots. It is widely used for authentication and authorisation, letting a server verify a user's identity without storing session state. The signature confirms the token has not been tampered with, but the payload is only encoded, not encrypted, so it should not hold secrets.