Reputation: 115
Jwt token vs access token
I'm studing IdentityServer4 and I got question. I know that exist jwt token which need for checking token. It checks that token was gotten from trust server. There is access_token which need to authorize in app. How does it work? I get two tokens or jwt contains a access_token as well?
Upvotes: 0
Views: 1490
Answers (1)
Reputation: 520
From an Auth Server(The server which issues the JWT token), you will received a JWT Token aka Access_Token. This Auth Server will contains the Secret-Key that can issues an Access-Token.
From a client(Mobile/Web/Console App), you will need to pass this Access_Token in your Request Header to your Resource Server(The server where your resources stored, normally this is your backend server) to request for Resources/Data.
(e.g : Authorization : Bearer <Access_Token>)
Upon receives a request from client,in your Resource Server, you will need to have a Validate JWT function that will validate the JWT Token based on a public-key (Security Algorithm : RSA256, HS256).
Upvotes: 2
Related Questions
- Jwt token authentication in ASP.NET Core
- ASP.NET Identity Bearer Token vs JWT Pros and Cons
- JWT access token vs refresh token (creating)
- Differences between AspNetUserToken and custom made JWT token in .NET Core 3.0
- ASP .NET Core Identity default authentication vs JWT authentication
- Asp Web API. JWT Authentication vs username / password Authentication
- Difference between Forms based authentication and Token based Authetication
- asp.net core identity - 2 types of jwt tokens
- Asp.net core Identity and Token Based Authetication
- asp.net webapi UseOAuthBearerAuthentication vs UseJwtBearerAuthentication