Statements (88)
| Predicate | Object |
|---|---|
| gptkbp:instance_of |
gptkb:API
|
| gptkbp:can |
RSA algorithm
ECDSA algorithm HMAC algorithm |
| gptkbp:can_be_decoded |
using public key
using secret key without a secret key |
| gptkbp:can_be_expired |
gptkb:true
|
| gptkbp:can_be_signed_using |
RSA algorithm
ECDSA algorithm HMAC algorithm |
| gptkbp:can_be_used_with |
gptkb:cookies
gptkb:HTTPS HTTP headers local storage refresh tokens short-lived tokens |
| gptkbp:can_contain |
gptkb:Identity_and_Access_Management
roles user information custom claims audience (aud) expiration time (exp) issued at (iat) issuer (iss) not before (nbf) subject (sub) |
| gptkbp:claims_can_be |
private claims
public claims registered claims |
| gptkbp:composed_of |
gptkb:sports_equipment
gptkb:Wrestling header |
| gptkbp:consists_of |
gptkb:sports_equipment
gptkb:Wrestling header |
| gptkbp:contains |
claims
|
| gptkbp:contains_claims |
private claims
public claims registered claims |
| gptkbp:encoded_using |
Base64 Url encoding
|
| gptkbp:foldable |
gptkb:true
|
| https://www.w3.org/2000/01/rdf-schema#label |
JWT
|
| gptkbp:is_human-readable |
gptkb:true
|
| gptkbp:is_not_encrypted |
gptkb:true
|
| gptkbp:is_parsed_as |
JSON object
|
| gptkbp:is_part_of |
gptkb:Identity_and_Access_Management
security protocols authorization frameworks |
| gptkbp:is_popular_in |
gptkb:mobile_applications
web applications API authentication |
| gptkbp:is_related_to |
RESTful APIs
authorization identity management microservices architecture session management single sign-on (SSO) security tokens token-based authentication cross-origin resource sharing (CORS) claims-based authentication |
| gptkbp:is_self_contained |
gptkb:true
|
| gptkbp:is_self-contained |
gptkb:true
|
| gptkbp:is_standardized_by |
gptkb:RFC_7519
|
| gptkbp:is_supported_by |
various libraries
many programming languages most programming languages |
| gptkbp:is_urlsafe |
gptkb:true
|
| gptkbp:is_used_by |
microservices
serverless architectures single page applications (SPAs) |
| gptkbp:is_used_in |
gptkb:OAuth_2.0
gptkb:Open_ID_Connect |
| gptkbp:is_vulnerable_to |
man-in-the-middle attacks
replay attacks signature spoofing token theft |
| gptkbp:security |
gptkb:true
|
| gptkbp:serialization |
string
|
| gptkbp:state |
gptkb:true
|
| gptkbp:used_for |
authentication
information exchange |
| gptkbp:bfsParent |
gptkb:VMware_v_Sphere
gptkb:Django gptkb:Tiffany_&_Co. gptkb:Bacardi |
| gptkbp:bfsLayer |
4
|