Its mentioned e.g. here:
- https://jwt.io/introduction (scroll to section “Signature”)
- https://hirosht.medium.com/customized-jwt-encoded-with-hmac-sha256-hs256-267574bd7639 (scroll to section “Signature;”)
It’s mentioned in other places too.
So what is it? Is it pseudo code or is it a dummy function or simply a mistake everybody copies and pastes?
Thank you for visiting the Q&A section on Magenaut. Please note that all the answers may not help you solve the issue immediately. So please treat them as advisements. If you found the post helpful (or not), leave a comment & I’ll get back to you as soon as possible.
It is a standard algorithum.
The JWT documentation is providing psuedo-code (and also links off to JWT specific libraries that you should probably be using instead of writing your own implementation).
The blog you’ve found has code examples using Crypto-JS
You need a plugin named “crypto”
It has “createHmac” function where you can give “sha256” as an argument.