JSON Web Token (JWT)¶
The jwt Module implements the JSON Web Token standard. A JSON Web Token is represented by a JWT object, related utility classes and functions are availbale in this module too.
Classes¶
-
class
jwcrypto.jwt.JWT(header=None, claims=None, jwt=None, key=None, algs=None)¶ Bases:
objectJSON Web token object
This object represent a generic token.
Creates a JWT object.
Parameters: - header – A dict or a JSON string with the JWT Header data.
- claims – A dict or a string withthe JWT Claims data.
- jwt – a ‘raw’ JWT token
- key – A (
jwcrypto.jwk.JWK) key to deserialize the token. - algs – An optional list of allowed algorithms
Note: either the header,claims or jwt,key parameters should be provided as a deserialization operation (which occurs if the jwt is provided will wipe any header os claim provided by setting those obtained from the deserialization of the jwt token.
-
deserialize(jwt, key=None)¶ Deserialize a JWT token.
NOTE: Destroys any current status and tries to import the raw token provided.
Parameters: - jwt – a ‘raw’ JWT token.
- key – A (
jwcrypto.jwk.JWK) verification or decryption key.
-
make_encrypted_token(key)¶ Encrypts the payload.
Creates a JWE token with the header as the JWE protected header and the claims as the plaintext. See (
jwcrypto.jwe.JWE) for details on the exceptions that may be reaised.Parameters: key – A ( jwcrypto.jwk.JWK) key.
-
make_signed_token(key)¶ Signs the payload.
Creates a JWS token with the header as the JWS protected header and the claims as the payload. See (
jwcrypto.jws.JWS) for details on the exceptions that may be reaised.Parameters: key – A ( jwcrypto.jwk.JWK) key.
-
serialize(compact=True)¶ Serializes the object into a JWS token.
Parameters: compact(boolean) – must be True. Note: the compact parameter is provided for general compatibility with the serialize() functions of
jwcrypto.jws.JWSandjwcrypto.jwe.JWEso that these objects can all be used interchangeably. However the only valid JWT representtion is the compact representation.