jwt-client icon indicating copy to clipboard operation
jwt-client copied to clipboard

Published 20 hours ago verified publisher icon pauldijou

JWT Base64url Encoded

Open tom-dierckx opened this issue 7 years ago • 1 comments

The package used for decrypting the jwt token atob only works with base64 encoded strings not with base64 URL safe encoded strings.

We have a JWT url safe b64 encoded and this gives issues when the _ and - characters appear.

Regards,

Tom Dierckx

tom-dierckx avatar Jul 12 '17 15:07 tom-dierckx

This is true: to decode the JWT you should use base64url!

That's because of the non-url-safeness of the / and + characters, allowed in the base64 encoding.

caesarsol avatar Apr 08 '19 10:04 caesarsol