Geek Answers Handbook

How are Microsoft JWT authentication tokens signed?

In my web application, I need to check the JWT authentication tokens that I get from the Live SDK 5.6. Some time ago, the signature of these tokens was a HMACSHA256 hash of the base64 encoded header + payload using the signature key, which was a secret application (from account.live.com/developers/applications) + "JWTSig". It seems that this is not the case now.

Does anyone know how these tokens are now signed?

Sorry for my English.

+4
source share
1 answer

- JWT, Azure Mobile Services, , AMS. GitHub , , :

JWT Validator

GitHub, ASP.NET:

AuthenticationTokenSample

ValidateSignature(), UTF-8 JWT MAC- HMAC SHA-256 Azure Mobile Services. JWT Crypto Segment , , HMAC JWT JWT .

, , - "JWTSig" ValidateSignature(). , AMS. , .

0

More articles:


All Articles