You're reading from Real-World Next.js Build scalable, high-performance, and modern web applications using Next.js, the React framework for production

Product type Paperback

Published in Feb 2022

Publisher Packt

ISBN-13 9781801073493

Length 366 pages

Edition 1st Edition

Languages

Typescript

Tools

Next.js

Concepts

Front End Web Development

Author (1):

Michele Riva

View More author details

Table of Contents (19) Chapters

Preface

1. Part 1: Introduction to Next.js

2. Chapter 1: A Brief Introduction to Next.js FREE CHAPTER

3. Chapter 2: Exploring Different Rendering Strategies

4. Chapter 3: Next.js Basics and Built-In Components

5. Part 2: Hands-On Next.js

6. Chapter 4: Organizing the Code Base and Fetching Data in Next.js

7. Chapter 5: Managing Local and Global States in Next.js

8. Chapter 6: CSS and Built-In Styling Methods

9. Chapter 7: Using UI Frameworks

10. Chapter 8: Using a Custom Server

11. Chapter 9: Testing Next.js

12. Chapter 10: Working with SEO and Managing Performance

13. Chapter 11: Different Deployment Platforms

14. Part 3: Next.js by Example

15. Chapter 12: Managing Authentication and User Sessions

16. Chapter 13: Building an E-Commerce Website with Next.js and GraphCMS

17. Chapter 14: Example Projects and Next Steps for Learning More

18. Other Books You May Enjoy

Packt is searching for authors like you

Understanding JSON web tokens

As written on the https://jwt.io website, a JWT (short for JSON Web Token) is an open, industry-standard RFC 7519 method for representing claims securely between two parties.

To keep it simple, we can think of JWTs as three distinct base64-encoded JSON chunks of data.

Let's take the following JWT as an example:

eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiI5MDhlYWZhNy03MWJkLTQyMDMtOGY3Ni1iNjA3MmNkMTFlODciLCJuYW1lIjoiSmFuZSBEb2UiLCJpYXQiOjE1MTYyMzkwMjJ9.HCl73CTg8960TvLP7i5mV2hKQlSJLaLAlmvHk38kL8o

If we pay enough attention, we can see three different chunks of data separated by periods.

The first part represents the JWT header. It contains two essential pieces of information: the token type and the algorithm used for signing it (we will talk more about that in just a second).

The second part is the payload. Here is where we put all the non-sensitive data that can help us identify our users. Never store data such as passwords and...