- Core Features
- JJWT is a pure Java implementation of JSON Web Tokens and Keys
- Supports all Java 7+ JDKs and Android platforms
- Provides automatic security best practices and assertions
- Includes fluent API with auto-completion for IDEs
- JWT Types
- JWTs can be unprotected (plain text) or signed (JWS)
- JWEs offer full encryption and authentication
- Supports various cryptographic algorithms including HMAC, RSA, ECDSA
- Allows custom compression for both JWS and JWEs
- Implementation Details
- Uses runtime dependencies for stable development
- Includes automatic header generation and X.509 thumbprint calculation
- Supports custom header parameters and claims
- Provides type-safe claims parsing and verification
- Security Features
- Implements automatic signature verification
- Supports multiple key management algorithms
- Includes claim assertions and verification capabilities
- Ensures 100% test code coverage
- Usage
- Requires specific dependencies for JDK and Android projects
- Uses builder-based fluent interface for quick creation
- Supports both byte array content and JSON claims
- Includes comprehensive documentation and community support