
Episode 526: Brian Campbell on Proof of Possession Defenses
Software Engineering Radio - the podcast for professional software developers
00:00
What's the Difference Between a JWT and a Bearer Token?
A JWT is a token format that contains the information in whatever is meant to be conveyed. A bearer token is just any kind of token which can be used without any further proof of anything. So they're related but different. In OAuth, the actual token format itself is undefined so there's a lot of OAuth deployments that pass around tokens that are just sort of long random strings as well.
Transcript
Play full episode