RFC 7519

JSON Web Token (JWT), May 2015

Canonical URL:
https://www.rfc-editor.org/rfc/rfc7519.txt
File formats:
Plain TextPDF
Status:
PROPOSED STANDARD
Updated by:
RFC 7797
Authors:
M. Jones
J. Bradley
N. Sakimura
Stream:
IETF
Source:
oauth (sec)

Cite this RFC: TXT  |  XML

DOI:  http://dx.doi.org/10.17487/RFC7519

Discuss this RFC: Send questions or comments to oauth@ietf.org

Other actions: Find Errata (if any)  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

JSON Web Token (JWT) is a compact, URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is used as the payload of a JSON Web Signature (JWS) structure or as the plaintext of a JSON Web Encryption (JWE) structure, enabling the claims to be digitally signed or integrity protected with a Message Authentication Code (MAC) and/or encrypted.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader



Search RFCs
Advanced Search
×