关于[JWTs: Which Signing Algorithm Should I Use?]的摘要:
JSON Web Tokens (JWTs) can be signed using many different algorithms: RS256, PS512, ES384, HS1; you can see why some developers scratch their heads when asked which one they would like to use. In my experience, many of the mainstream identity providers have historically only offered RS256 or at least defaulted to it. However, thanks to initiatives such as Open Banking, these identity providers are now expanding their support to cover more signing algorithms, which means you will need to start understanding which ones to use.
原文地址: https://www.scottbrady91.com/JOSE/JWTs-Which-Signing-Algorithm-Should-I-Use