JWT
JWT
JWT is a JSON object that is defined in RFC 7519 as a safe way to represent a set of information between two parties. The token is composed of a header, a payload, and a signature. It represents users' credentials wrapped in a single query string. For more information about JWT, visit jwt.io.
JWT Headers
JWT Headers
| Param Name | Value Type & Example | Description |
|---|---|---|
alg | String "RS256" | Signing algorithm to be used. Always RS256. |
kid | String "s9xPsaHu_uNBmw6FohAs94sjit8COGpfO1N5bK8Ut_U" | Key ID of the public key that can be used to verify the signature. Value is the base64url encoding of the JWK SHA-256 Thumbprint of the public key. See RFC 7638. |
Payload
Payload
| Param Name | Value Type & Example | Description |
|---|---|---|
iss | String "1d1e2d5a-6094-47d6-abb9-1c290258fac4" | Developer License UUID. |
sub | String "acfefa4d977f44a0abfa8a1cf89d8370" | Desired SIP Account username to register (Alphanumeric, a-z, A-Z, 0-9, max 32 characters). |
iat | Number 1511900000 | See JWT RFC 7519 section 4.1.1. |
exp | Number 1511903600 | See JWT RFC 7519 section 4.1.4. Min 60s after iat, max 31,536,000s (1 year) after iat. |
nonce | String "21049f47-5aa5-418b-ae27-d61c72c72387" | A unique cryptographic nonce. |
Sample JWT Headers and Payload created by developer’s application server
{
"alg": "RS256",
"kid": "s9xPsaHu_uNBmw6FohAs94sjit8COGpfO1N5bK8Ut_U"
}
.
{
"iss": "1d1e2d5a-6094-47d6-abb9-1c290258fac4",
"sub": "acfefa4d977f44a0abfa8a1cf89d8370",
"iat": 1511900000,
"exp": 1511903600,
"nonce": "21049f47-5aa5-418b-ae27-d61c72c72387"
}