This repository contains a JSON Web Tokens library written in Go. The library implements JWT creation, parsing, signing, and verification.
Creating a JWT is simple. The New(...) function takes a single argument, the claims to include as the payload to the JWT. The claims can be any value, as long as that value can be serialized to JSON using json.Marshal
// Create a new JWT token
token, err := jwt.New(myClaims{
Name: "John Smith",
Age: 10,
})
// Create the signed string for the token
tokenStr := token.SignedString(SECRET)Parsing a JWT from a string into a jwt.Token instance:
// Parse the token
parsedToken, err := jwt.Parse(tokenStr)
// Unmarshal the claims
var claims testClaims
err := parsedToken.Claims(&claims)Verifying that a JWT is genuine and was signed by a known secret:
verified := parsedToken.Verify(SECRET)This library implements the "HS256" signature algorithm (HMAC SHA256). This is sufficient for most needs, but other signing options can be easily added. Anyone who wants to do this is welcome to submit a pull request, and we'll review it promptly.