JOSE

This part of the documentation contains information on the JOSE implementation. It includes:

1. JSON Web Signature (JWS)

2. JSON Web Encryption (JWE)

3. JSON Web Key (JWK)

4. JSON Web Algorithm (JWA)

5. JSON Web Token (JWT)

Changed in version 1.7: We are deprecating authlib.jose module in favor of joserfc. It will be removed in Authlib 1.8.

Usage

A simple example on how to use JWT with Authlib:

from authlib.jose import jwt

with open('private.pem', 'rb') as f:
    key = f.read()

payload = {'iss': 'Authlib', 'sub': '123', ...}
header = {'alg': 'RS256'}
s = jwt.encode(header, payload, key)

Guide

Follow the documentation below to find out more in detail.

• JSON Web Signature (JWS)
  • Compact Serialize and Deserialize
  • JSON Serialize and Deserialize
• JSON Web Encryption (JWE)
  • Compact Serialize and Deserialize
• JSON Web Key (JWK)
• JSON Web Token (JWT)
  • JWT Encode
  • JWT Decode
  • JWT with limited Algorithms
  • JWT Payload Claims Validation
  • Use dynamic keys
• Specifications
  • RFC7515: JSON Web Signature
  • RFC7516: JSON Web Encryption
  • RFC7517: JSON Web Key
  • RFC7518: JSON Web Algorithms
  • RFC7519: JSON Web Token
  • RFC7638: JSON Web Key (JWK) Thumbprint
  • RFC8037: CFRG Elliptic Curve Diffie-Hellman (ECDH) and Signatures in JSON Object Signing and Encryption (JOSE)