JWT Authentication Explained

Cyber security tip: don’t show your real identity card or badge online. Respectfully suggested.

this vieo is just perfect <3. On Point. The main idea is so well explaned with the example that i had no issue to transfer that newly gained knowledge to my study session concerning the jwt.
Love it men!!!!

Greetings from germany and thanks for this video. i appreaciated it a ton :)!!!!!!!!!!!!!!

I think what is hard to understand, is that you do not need the secret key for the server side validation of the token, if I'm right. Otherwise there would be no difference to using session.

I would say this is probably the best explanation I have seen.

thank you so much for this explantion! I searched JWT today since I keep forgeting how JWT works, after watching your video i think i will never forget it

A good analogy, thanks.
From what I understand a valid jwt sent by the user's browser allows access to various restricted web pages on an app. Therefore, if the jwt is stolen somehow then the thief will also have access. How likely is this and will possession allow full access without any other checks on the user?

This is really a very interesting content

Great analogy to teach the concept of JWT authentication!

This was actually a really helpful analogy. thank you for sharing!

Thank you! The analogies really helped!

Thank you - that was invaluable !

Glad you could help me understand JWT better. Thanks

thank you so much for this very smart analogy Matt! you certainly made a difference to my understanding and you got yourself (at least) one more subscriber (as I am going to share this video with my bootcamp's cohort).

Great explanation, thanks a lot!

I really loved the example you used in this video. Thank you for explaining it in such a clear and relatable way 👍

Thanks for the examples, helped understand better

Very nice explanation

Thanks a lot. It was helpful for me.

thanks for the explanation. can you please do a video on User Impersonation using Identity/JWT with an example in .NET. I am unable to understand how this going to work when token is generated already. Sorry if question is dumb.