Wow! Watched the introduction to JWT and then this. Even though I knew most of the technical things behind JWT, I feel the explanations behind *why* we do these things gave me way better understanding about JWT's. I wish all the content in internet would be as clear and concise as these videos were. Thank you!
I have been working with JWT for the past 2 years and initially it was confusing and it took me some time to understand. How I wish this video was there at that time. Looking forward to the OAuth and Okta implementation (i think you are heading towards that only).
very hard working and skilled expert who invariably understand what a problem all about and takes the necessary massage to get it done □Thanks to Hackernile5 on IG I got disable to account active back aging you'll should give him a try and thanks me later □I'm from Florida Facebook logged me out leat week after I posted a picture didn't know why We'lli solved the problem after seeing a ton for good recommendations in the comment about Hackernile5 on IG He helped me to get my account back □Thanks to Hackernile5 on IG I woke up this morning to find my lost Facebook account password sent to my email after he hacked 3year ago❣️❣️✏️
I routinely come back to review these videos as I'm working on different projects. Truly elegant and clear explanation of core concepts. You have a gift for educating!
So many guys explaining JWT out there. But all of them miss expalining about the signature and how it protects us from hackers. Thanks for the beautiful explanation.
As always great explantion Koushik ! Watched this vid today, despite it being recomended quite frequently on my home page. I just wish I could have watched this video earlier.
This is so addictive , I watch your videos just like a documentry or show on ott . you are an awesme guru , great narrator ,orator , animator , teacher , architect and yes the java programmer ! you just simplify this imaginary coding concepts!
One of the best videos i have watched introducing a rather confusing concept and making it crystal clear, great work Koushik, thanks for sharing your knowledge!
One of the best, if not the very best explanation available in the youtube and I am watching such tutorials for some years. He understands it very clearly. That is why he could explain the stuff so easy to understand way. Great work!
Who are these people who 'unlike' these gem of the videos. They should know how much time consuming it is for Koushik has to put to make this content available to everyone for free. If you don't like it, simply ignore it. Why press unlike? I dont understand at all. Insane !
I never comment on any video at all. But your way of explanation is too good. It made me comment on this video. Good work, thank you so much. I got exactly all the info I was looking for
Thanks for the nice explanation. Only thing i want to mention is to use a secure httponly cookie to store the token on the client and not local storage. As local storage data can be read by JS, it is vulnerable of XSS. Use httponly cookie instead.
The first 2 questions are literally the questions I had in my mind for ages. If there's a hall of fame for tech videos, this and part I should be on it. Nice work!!
I watched this video, figured out and it makes possible to solve a problem easily. Thank you very much!! you're spreading knowlodge around the world! Greetings from Brazil!!
Very very very very clear explanation, i've been referring to so many tutorials like this, i think this is the fifth video in the line, This is the best & i don't need to refer any related videos any more. Thanks for saving my time. Keep the good work going....
Awesome. So intuitive to understand your tutorials. Requesting you to do one on JWT Generation and Validation in conjunction with OAuth. Thanks in advance.
I was using JWT for months now, But this is the first time I properly understand it. Thanks . Now I must go and implements safety measures in my app. Just a question, If Secure signature is linked to the content, and changing content changes that signature, In my current implementation, I have added expiry time ( 24hrs in unix number ) as part of the payload. Do I still need to implement a expired token bucket?
Really brilliant explanation. Would it be possible to create a summary diagram that gives an overview of the concepts taught. This would help us to brush through the concepts taught. You make it sound so easy.. Kudos to you!!
From what I've gathered in the last videos, authorization is mainly validating if a logged-in user has access privileges to a certain endpoint once the user has been authenticated by the server(by any manner: JDBC/LDAP/JPA). In this video, it seems like JWT is only working towards authenticating rather than authorizing specific resources as you did by using antMatchers and ROLES in the previous videos. I hope the next video demonstrates authorization using JWT.
Thanks for helping the world. We are planning to implement JWT with OAuth for the REST services, your videos helps me in better understanding. Appreciate the service you are doing Kaushik. :)
Very clear explanation! I love how you sequence your vids per topic in a way that is easy to follow. I got really stuck in one of my projects as I have to learn about JWT fast and your vids helped me understand it quickly. Thank you so much for this!
Thanks a lot Koushik. The questions and answers part of thid video is what I liked fhr most. I was just trying to get the answers to these questions and this video just hit right on the spot.
Thanks for taking the time to create such an informative video! This answered my question about the secret part of JWTs and how that fits in with everything.
Love your presentation skills and content with practical example. You made it look so easy to digest. Have been reading different blogs but was not able to get clarity. Thanks for the wonderful video. Out of curiosity do you have series on Linkedin learning ?
One more great tutorial on this channel! Quick Question pls. In a load balanced env, will the secret key be same for all servers i.e. if a server signs and another server gets the next request, how will that workout
@ 11:00 work mentioning that the secret being used to calculate the HMAC would first have to be exchanged between the server and client using a key exchange algorithm such as RSA.
1) Wake up. 2) Make a pot of coffee. 3). Binge watch Javabrains 😀. Thanks again Koushik!
4. Profit
It's crazy that I am doing the exact same thing rn
i realize Im kind of off topic but do anyone know of a good website to stream new series online ?
@Cruz Otto i watch on flixzone. You can find it on google =)
@Quinn Karson Thanks, I went there and it seems to work :D Appreciate it !!
An example of a perfect and meaningful explanation! That is a real gem, hard to find in the modern internet full of mediocre stuff.
His tutorials are really good! Great content with so much clarity
@Shandilya's Top 5 qqqqqqqqqqqqqqqqqqqqq+qqqqqqQqqqqqqqqqqqqqq+qqqqqqqqqqqqqqqq+qqqqqqqqqqqqqqq
ur happy
Probably the most underrated person on youtube ..He deserves many more subscribes for his top class content ...
Wow! Watched the introduction to JWT and then this. Even though I knew most of the technical things behind JWT, I feel the explanations behind *why* we do these things gave me way better understanding about JWT's. I wish all the content in internet would be as clear and concise as these videos were. Thank you!
aap bahuton k liye aadarsh hain bade bhai... Dil se dhanyawaad 🙏
I have been working with JWT for the past 2 years and initially it was confusing and it took me some time to understand. How I wish this video was there at that time.
Looking forward to the OAuth and Okta implementation (i think you are heading towards that only).
very hard working and skilled expert who invariably understand what a problem all about and takes the necessary massage to get it done
□Thanks to Hackernile5 on IG I got disable to account active back aging you'll should give him a try and thanks me later
□I'm from Florida
Facebook logged me out leat week after I posted a picture didn't know why
We'lli solved the problem after seeing a ton for good recommendations in the comment about Hackernile5 on IG
He helped me to get my account back
□Thanks to Hackernile5 on IG I woke up this morning to find my lost Facebook account password sent to my email after he hacked 3year ago❣️❣️✏️
I routinely come back to review these videos as I'm working on different projects. Truly elegant and clear explanation of core concepts. You have a gift for educating!
It's just "once in a blue moon" feeling when I wish I could like a video multiple times. Can't thank enough.
Explained in a great way! Never imagined this concept to be so simple and interesting.
Why do anybody wants to dislike this video??
It's so amazingly explained!
They tapped twice like inadvertently
I started my career with your tutorials.. I'm a regular follower of your videos.. Continue the good work koushik sir.. Waiting for next video
Man...you are a true GURU....I am following your tutorial since long......just leave Linkedin and start teaching full time :)
So many guys explaining JWT out there. But all of them miss expalining about the signature and how it protects us from hackers. Thanks for the beautiful explanation.
I can’t believe i just came across your channel. This is gold, thank you!
As always great explantion Koushik !
Watched this vid today, despite it being recomended quite frequently on my home page. I just wish I could have watched this video earlier.
Thank you Koushik. I cannot imagine a day without watching Java Brains and learning something new . Cant thank you enough. God Bless
I cannot help but leave a comment for the wonderful (and super helpful) java guide for newbie developers like me. Thank you!
Kouhik bhai i am saying this honestly that my search regarding the topic ended after seeing this tutorial. Best Best Best.
This is so addictive , I watch your videos just like a documentry or show on ott . you are an awesme guru , great narrator ,orator , animator , teacher , architect and yes the java programmer ! you just simplify this imaginary coding concepts!
One of the best videos i have watched introducing a rather confusing concept and making it crystal clear, great work Koushik, thanks for sharing your knowledge!
This tutorial makes me conceptually clear. Heads up to Java Brain.
This is the best JWT explanation on the Internet!
Best Tutorial on Internet about JWT ❤
One of the best, if not the very best explanation available in the youtube and I am watching such tutorials for some years. He understands it very clearly. That is why he could explain the stuff so easy to understand way. Great work!
Who are these people who 'unlike' these gem of the videos. They should know how much time consuming it is for Koushik has to put to make this content available to everyone for free. If you don't like it, simply ignore it. Why press unlike? I dont understand at all. Insane !
The 2 videos about JWT are so well structured and very clear. Thank you so much!
This made JWTs very easy to understand. All explained from first principles! Amazing work @Java Brains
Going down the JWT rabbit hole. Thanks for the great free videos man !!!
I never comment on any video at all. But your way of explanation is too good. It made me comment on this video. Good work, thank you so much. I got exactly all the info I was looking for
I am building an SSO... And this video series is a life saver
Thanks for the nice explanation. Only thing i want to mention is to use a secure httponly cookie to store the token on the client and not local storage. As local storage data can be read by JS, it is vulnerable of XSS. Use httponly cookie instead.
Your analogies are gem, please continue such noble work
The first 2 questions are literally the questions I had in my mind for ages. If there's a hall of fame for tech videos, this and part I should be on it. Nice work!!
wish you have healthy and long life and keep making tutorials for us, the way of your teaching is AWESOMEE....Love from Bangladesh.
I watched this video, figured out and it makes possible to solve a problem easily. Thank you very much!! you're spreading knowlodge around the world! Greetings from Brazil!!
thanks man. Really cleared the entire concept in half hour. Very nice explanation
Very very very very clear explanation, i've been referring to so many tutorials like this, i think this is the fifth video in the line, This is the best & i don't need to refer any related videos any more. Thanks for saving my time. Keep the good work going....
Awesome. So intuitive to understand your tutorials. Requesting you to do one on JWT Generation and Validation in conjunction with OAuth. Thanks in advance.
Thank you so much.
When this JWT tutorial finishes, can you upload an OAUTH tutorial? I always try to implement it but I never understand it.
Best explanation ever about JWT
The three parts of a JWT are the header, the payload and the sick nature
I was using JWT for months now, But this is the first time I properly understand it. Thanks . Now I must go and implements safety measures in my app.
Just a question, If Secure signature is linked to the content, and changing content changes that signature, In my current implementation, I have added expiry time ( 24hrs in unix number ) as part of the payload. Do I still need to implement a expired token bucket?
Thank you! Best JWT Video on TH-cam. Will definitely come back for other content.
Really brilliant explanation. Would it be possible to create a summary diagram that gives an overview of the concepts taught. This would help us to brush through the concepts taught. You make it sound so easy.. Kudos to you!!
it's all time best video on JWT. Great. Thank you
no wonder why this video has no dislikes , huge thanks sir
From what I've gathered in the last videos, authorization is mainly validating if a logged-in user has access privileges to a certain endpoint once the user has been authenticated by the server(by any manner: JDBC/LDAP/JPA). In this video, it seems like JWT is only working towards authenticating rather than authorizing specific resources as you did by using antMatchers and ROLES in the previous videos. I hope the next video demonstrates authorization using JWT.
These video series on OAuth has been super good. I love the analogies, the stick figures and basic diagrams, and did I mention analogies? Great job!
Highly appreciate the way of instruction
Thanks for the best explanation ❤️❤️
Best Tutorial on the topic
Thanks for helping the world. We are planning to implement JWT with OAuth for the REST services, your videos helps me in better understanding. Appreciate the service you are doing Kaushik. :)
Very clear explanation! I love how you sequence your vids per topic in a way that is easy to follow. I got really stuck in one of my projects as I have to learn about JWT fast and your vids helped me understand it quickly. Thank you so much for this!
A quality content on JWT. Thanks much sir.
Wow what a explanation fallen in love with you for this …awesome man…excellent
Excellent videos on JWT - the previous one and this one. This is really brilliant. It is indeed true that teaching is a different skill altogether.
Best explanation found, thanks java brains!!
How would you recommend maintaining a secret across multiple micro-services so that JWTs can be authorized?
this is way beyond well presented content. Thank you alot. I am gonna go thru other videos too.
Thanks a lot Koushik. The questions and answers part of thid video is what I liked fhr most. I was just trying to get the answers to these questions and this video just hit right on the spot.
Your videos are gems. Thank you.
Can you make a brief video on how to write documentation for web projects.
As always, clear crisp and to the point.
Just one word - Brilliant!
Couldn't be more perfect. Kudos
Please tell about best practices to secure JWT payload also e.g using JWE
Simple and straight to the point....
this content is priceless , thanks Kaushik , you are love ❤️
Awesome!
This video has a complete explanation
This is so helpful! Very simply nicely explained! Thank you
You have very good explanation. It’s clear and easy to understand. Thank you.
Could you set up an pay-pal please so we could freaking pay you for your genius tutorials?
th-cam.com/video/1IY6vIdRG_0/w-d-xo.html
@@BalaKrishnan-mk6hq Thank you, I am a member now!
Java brains deserves our donation I will also join in this channel later on. I am glad you joined thanks Michael.
Thank you very much! Your videos are very helpful and gave me the idea of JWT in an easy to understand simple way ❤️
This is a beautiful explanation
No words to describe the words yu put to taught us!!
Now finally, I understand it!! Thanks for this. Great explanation.
excellent and clear explanation. thank you.
Fantastic explanation Koushik!
The sketch of the malicious user at 14:22 is hilarious!
Excellent. Waiting for the next video. As many of your followers requested, please do video for OAuth2 as well.
Thanks for taking the time to create such an informative video! This answered my question about the secret part of JWTs and how that fits in with everything.
You are gold Koushik!!!
brilliant explanation, thanks
Nicely Explained JWT , thanks 👍
Very clear explanation :) Tku so much. If https(or SSL) can prevent stealing the JWT, why do we even need the signature in the 1st place?
Loved the explanation. Thank you so much!!
Love your presentation skills and content with practical example. You made it look so easy to digest. Have been reading different blogs but was not able to get clarity. Thanks for the wonderful video. Out of curiosity do you have series on Linkedin learning ?
Great video. Kudos to the creator for the effort!!
Very good tutorials, many thanks!
Great tutorial as always.
thanks again Koushik, very clear as always
One more great tutorial on this channel! Quick Question pls. In a load balanced env, will the secret key be same for all servers i.e. if a server signs and another server gets the next request, how will that workout
Great video. Good explanation. Thank you.
so easy on my ears and brain, thanks man
Thanks for that. Very nicely explained.
Woah...Just Amazing. Undestood totally.
Thanks a lot Kaushik 😊
@ 11:00 work mentioning that the secret being used to calculate the HMAC would first have to be exchanged between the server and client using a key exchange algorithm such as RSA.
Awesome explanation 🙂
very clear explanation.
so clear! and also explain the pros & cons of JWT and suggestions how to solve this. ex, oAuth