No More Posting New Topics!

If you have a question or an issue, please start a thread in our Github Discussions Forum.
This forum is closed for new threads/ topics.

Navigation

    Quasar Framework
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Groups
    • Search

    JWE Guidance

    Framework
    2
    3
    217
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      susansiow last edited by susansiow

      One of the reasons of sticking to Quasar Framework is the efforts of the team paying great attention to security, thank you!

      In regard to the usage of JWE - https://quasar.dev/security/dos-and-donts#web, I wonder if you have a code sample on the application of JWE and with Quasar boot file?

      screenshot-1.png

      1 Reply Last reply Reply Quote 0
      • s.molinari
        s.molinari last edited by

        @susansiow - From the client app’s perspective, there is no difference to using normal JWTs. The difference is how the data in the JWT is encrypted and that happens all on the server side. That point should read…

        Do use the JWE form of JWTs, instead of the JWS form.

        More info here: https://medium.facilelogin.com/jwt-jws-and-jwe-for-not-so-dummies-b63310d201a3

        Scott

        S 1 Reply Last reply Reply Quote 1
        • S
          susansiow @s.molinari last edited by

          @s-molinari Thanks Scott! 😁

          1 Reply Last reply Reply Quote 0
          • First post
            Last post