IT Concept: JWT (JSON Web Token)
A compact, URL-safe token format for transmitting signed claims between parties.
JWT (JSON Web Token) โ A base64-encoded token with three parts: header, payload, signature. Used for stateless authentication in APIs. Pros: no server-side session store, easy to pass through CDNs. Cons: can't be revoked before expiry (without a blocklist), larger than session IDs. Always verify signatures with HS256/RS256 and keep payloads minimal.