Security considerations when using JSON Web Tokens (JWT)

Security implementations for RESTful API calls are paramount. Whether it is a web-service API that you are exposing to third-party, or creating an AngularJS/KnockoutJS web application, your service end-points increase the risk of your API being exploited and compromised. It is therefor important to consider (not only the security risks highlighted by OWASP) but also ensure that your end-points are vulnerable despite your security implementations.

Continue readingMore Tag