Expanded options for signing and encrypting JSON Web Tokens (8.4)
You can now authenticate using JSON Web Token (JWT) token profiles to symmetrically and asymmetrically encrypt both signatures and content. Pega now supports all algorithms in the Nimbus JWT library, including nested tokens. Custom key identifier headers (kid) are also supported. Use token profiles to securely propagate identities and transfer data between systems.
The following figure shows a sample token profile that encrypts both signature and content with a selected algorithm.
For more information, see Creating a processing JSON Web token profile.
For more information, see Creating a generation JSON Web token profile.
Previous topic Configure an authentication profile with a JSON Web Token Bearer grant type (8.4) Next topic Simplify access with an Application URL alias (8.4)