JSON Web Token (JWT) Authentication in Python

A guide on how to implement JSON Web Token (JWT) authentication in Python. This article covers how to generate and verify JWTs in a web application to secure APIs.

JSON Web Token (JWT) is an open standard for securely transmitting information between parties as a JSON object. In this article, you'll learn how to generate, encode, and decode JWT using Python and how to use it for API authentication in web applications.

Python Code

import jwt  # PyJWT library
import datetime

# Secret key for encoding and decoding JWT
SECRET_KEY = 'your_secret_key'

# Generate JWT
def create_jwt(user_id):
    # Create payload with user info and expiration time
    payload = {
        'user_id': user_id,
        'exp': datetime.datetime.utcnow() + datetime.timedelta(minutes=30)
    }
    
    # Encode the token
    token = jwt.encode(payload, SECRET_KEY, algorithm='HS256')
    return token

# Decode JWT
def decode_jwt(token):
    try:
        # Decode the token and return the payload
        payload = jwt.decode(token, SECRET_KEY, algorithms=['HS256'])
        return payload
    except jwt.ExpiredSignatureError:
        return 'Token has expired'
    except jwt.InvalidTokenError:
        return 'Invalid token'

# Example usage
if __name__ == "__main__":
    token = create_jwt(123)
    print(f'Token: {token}')
    
    decoded_payload = decode_jwt(token)
    print(f'Payload: {decoded_payload}')

Detailed explanation:

import jwt: Import the PyJWT library to work with JSON Web Tokens.
SECRET_KEY = 'your_secret_key': Define the secret key to encode and decode JWTs.
def create_jwt(user_id): Function to create a JWT with user_id and a 30-minute expiration time.
payload = {...}: Defines the payload containing user information and expiration time.
jwt.encode(...): Encodes the payload into a JWT using the HS256 algorithm.
def decode_jwt(token): Function to decode the JWT and check its validity.
jwt.decode(...): Decodes the token and returns the payload.
if __name__ == "__main__":: Example usage to demonstrate creating and decoding JWTs.

System requirements:

Python 3.x
PyJWT library (can be installed using pip install pyjwt)

How to install the libraries needed to run the Python code above:

pip install pyjwt

Tips:

Avoid using weak or default secret keys, generate a strong key for security.
JWT authentication is commonly used in secure APIs; be mindful of security aspects like token expiration and the strength of the secret key.

Tags: Python, Authentication, JSON Web Token

Trim image to remove whitespace using Python

Guide on using Python to trim whitespace around an image (trim image) using the OpenCV library. This Python code helps to crop out excess whitespace around an image to highlight the main content.

How to write data to an Excel file using Python

A guide on how to use Python to write data into an Excel file using the openpyxl library, making it easy to manage and handle Excel data in your projects.

Guide to Creating a Login Form in Python Using PyQT6

A detailed guide on how to create a login form in Python using PyQT6, including designing the interface and handling the login button event.

Common Functions When Using Selenium Chrome in Python

A guide that introduces the most common functions used when working with Selenium and Chrome in Python, enabling tasks like searching, interacting with web elements, and browser navigation.

Guide to Reading Excel Files Using Python

A comprehensive guide on how to read content from Excel files (.xlsx, .xls) using Python, utilizing the openpyxl and pandas libraries with illustrative examples.

Commonly used functions in the Pandas library and how to use them

This article lists important functions in the Pandas library for Python and provides guidance on how to use them. Pandas is a powerful tool for data manipulation and analysis in Python.

Generate Captcha Code Using Python

A comprehensive guide on how to generate Captcha code using Python with the `captcha` library. This guide will help you understand how to create a simple Captcha to protect your forms from spam and bots.

How to UPDATE data in a MySQL database using Python

A guide on how to update data in a MySQL database using Python with the mysql-connector-python library.

How to reverse a Series in Pandas

A guide on how to reverse a `Series` in Pandas, a popular Python library for data manipulation. This article explains various methods to reverse the order of elements in a `Series`.

Comprehensive Guide to Using the print() Function in Python

A detailed guide on all the ways to use the print() function in Python, covering formatting options, parameters, and advanced usage.