JWT best practices for max security

Channel:

PS After Hours

Subscribers:

4,850

Published on June 9, 2022 3:00:08 PM ● Video Link: https://www.youtube.com/watch?v=FPTq_Qkc6Es

Duration: 4:50

4,978 views

102

Support my work https://www.patreon.com/pawelspychalski
Here are a few tips on how to make your JWT tokens more secure. JWT by itself is secure out of the box, but our authentication and authorization policy can benefit if you do the following:

How to revoke a JWT token: https://youtu.be/jzB4TfmOZyw

0:00 Let's increase the JWT security level
0:21 Why JWT is safe?
0:46 Keep the issuer of the token private key safe
1:03 Do not put any secrets into the JWT token
1:45 Keep the lifetime of the access and refresh token short
2:51 Not-Before policy
3:22 Use scopes!
4:24 More about JWT tokens

#quadmeup #youtube

If you want to support me:
✅ Patreon https://www.patreon.com/pawelspychalski
✅ Banggood affiliate http://bit.ly/2P8oAxr
✅ Paypal https://paypal.me/pawelspychalski

▶ Discord server https://quadmeup.com/discord
▶ My website https://quadmeup.com/

Other Videos By PS After Hours

2022-12-17	eSun eBOX Lite 3D printing filament dryer
2022-12-09	Lightweight 3D Printing - eSun ePLA-LW
2022-11-05	Why Elon Musk bought Twitter and why people will be fired?
2022-09-27	How STM32 Alternate Functions work
2022-09-13	How to exit VIM? 4 simple ways
2022-08-30	Difference between authentication and authorization
2022-08-13	What's the BEST open source license for your project?
2022-07-26	How to verify a JWT token in JavaScript and Node.js?
2022-07-19	A$$holes versus Open Source software
2022-06-23	JWT claims explained: registered, public and private
2022-06-09	JWT best practices for max security
2022-05-30	How to revoke a JWT token \| The JWT lifetime, blacklist and not-before policy
2022-05-02	How to generate JWT token in Java \| JWT, RSA256 and Auth0
2022-04-26	reMarkable 2 Review \| The final one!
2022-04-19	How to verify a JWT token in Java \| JWT, Keycloak, RSA256 and Auth0
2022-04-05	What is JWT? The JSON Web Token introduction
2022-03-22	The oscilloscope usage example \| Rigol DS1054Z basics
2022-03-16	What is a NFT and how it works?
2022-03-01	Never crack the ESP32 OLED again
2022-02-17	Crypto Miners hacked my AWS account and I lost $500
2022-02-08	GPS locator with Arduino and LoRa \| part 2

Tags:

jwt authentication

token based authentication

jwt token

json web tokens

jwt

secure

security

Channel	Latest
Milwaukee Admirals	8 hours ago
penguinz0	9 hours ago
Ontario Reign	10 hours ago
Hobbynize Blog	11 hours ago
ball storm	11 hours ago
Jayyy412	12 hours ago
Dimension D.	12 hours ago
PINO GAMES	12 hours ago
Rochester Americans	12 hours ago
Maou Asmodeus	12 hours ago
ZetFar	12 hours ago
Balance	12 hours ago
Xplosiveshot	12 hours ago
CatButtGamer	12 hours ago
MkGamingDome	12 hours ago
Rizsuja	12 hours ago
Flipthedps	12 hours ago
xFuZiionBR	12 hours ago
Tech & Co	12 hours ago
Zapek	12 hours ago
Seri Ray	12 hours ago
Luufey	12 hours ago
OPerator47	12 hours ago
Omrop Fryslân	12 hours ago
Fun World GAMING	12 hours ago