# Symmetric Encryption

In [2]:
import jwt
key = "secret"
payload = {
    "some": "payload",
}
encoded = jwt.encode(payload, key, algorithm="HS256")
print(encoded)

jwt.decode(encoded, key, algorithms="HS256")

eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzb21lIjoicGF5bG9hZCJ9.4twFt5NiznN84AWoo1d7KO1T_yoc0Z6XOpOVswacPZg


{'some': 'payload'}

# Symmetric Encryption with Expiry

In [3]:
import jwt, datetime, time

EXPIRY_TIME_SECONDS = 2
WAIT_TIME_SECONDS = 3

now = datetime.datetime.utcnow()
later = datetime.timedelta(seconds=EXPIRY_TIME_SECONDS)
key = "secret"
payload = {
    "some": "payload",
    "exp": now+later
}
encoded = jwt.encode(payload, key, algorithm="HS256")
print(encoded)
time.sleep(WAIT_TIME_SECONDS)
try:
    decoded = jwt.decode(encoded, key, algorithms="HS256")
    print(f"decoded: {decoded}")
except jwt.ExpiredSignatureError:
    print("Token expired")


eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzb21lIjoicGF5bG9hZCIsImV4cCI6MTY2OTc4ODY4NH0.q6IkCHbnY86eBwVU3Eq5w8fzwTBOxEFSRsnyNcUxPtQ
Token expired


# Asymmetric Encryption

In [4]:
from cryptography.hazmat.primitives.asymmetric import rsa
from cryptography.hazmat.primitives import serialization

def gen_private_key():
    private_key = rsa.generate_private_key(
        public_exponent=65537,
        key_size=2048
    )
    unencrypted_pem_private_key = private_key.private_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PrivateFormat.TraditionalOpenSSL,
        encryption_algorithm=serialization.NoEncryption()
    )
    return private_key, unencrypted_pem_private_key

def gen_public_key(private_key):
    pem_public_key = private_key.public_key().public_bytes(
        encoding=serialization.Encoding.PEM,
        format=serialization.PublicFormat.SubjectPublicKeyInfo
    )
    return pem_public_key

pri_key, pri_key_inbytes = gen_private_key()
pub_key = gen_public_key(pri_key)

In [5]:
import jwt
private_key = pri_key_inbytes
public_key = pub_key
payload = {
    "some": "payload",
}
encoded = jwt.encode(payload, private_key, algorithm="RS256")
print(encoded)

decoded = jwt.decode(encoded, public_key, algorithms=["RS256"])
decoded


eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzb21lIjoicGF5bG9hZCJ9.i43ldP_ZVqN7FnKubJc2yvUJt2Pam1hoo7OfFC2GFybcrCRR6QagtAVkA1f7vzMVnS7FfmtRGIhl_20pdIoxK6mpshwq0Y3uJTIsjKkrVrAsSsllZfvnq-pH4PydeAKK93n1V9Bs3dbFF-mr5rNM3KQxSimG_4kdAXHeHr_krzGcdWiDzC0zsnOpOjoAmALBofn77KXkHAsU5mQZyh8jWpbTs0OKvBTmkZfBrJP__JQtvIUGdxasXjwIqiadJF32xEMAkCaTzkt670Goy3h4Z6U8CPHEtwi8mVZu54uyaP5u0EyC3lWZH80Hf3xF7GtxbpEvHDhypN0omJ-KDBj2rQ


{'some': 'payload'}