## This notebook has two functions - encode and decode JWT

#### JWT stands for JSON Web Tokens.

In [14]:
'''
Encode the given text with given secret key. The default number of seconds for token validity is 600 seconds.
'''
def encode_token(text, secret_key, validity_seconds = 600):
    import datetime, jwt
    try:
        payload = {
            'exp': datetime.datetime.utcnow() + datetime.timedelta(days=0, seconds=validity_seconds),
            'iat': datetime.datetime.utcnow(),
            'secret': text
        }
        return jwt.encode(
            payload,
            secret_key,
            algorithm='HS256'
        )
    except Exception as e:
        return e

In [15]:
'''
Decode the encoded token with given secret_key
'''
def decode_token(auth_token, secret_key):
    import jwt
    try:
        payload = jwt.decode(auth_token, secret_key, algorithms='HS256')
        return {'auth': True, 'error': '', 'decoded': payload}
    except jwt.ExpiredSignatureError:
        return {'auth': False, 'error': 'Token expired'}
    except jwt.InvalidTokenError:
        return {'auth': False, 'error': 'Invalid token'}
    return {'auth': False, 'error': 'Some error'}


### Define a secret

In [6]:
secret = 'This-is-my-super-secret'

In [7]:
encoded_data = encode_token('Something to encode', secret)

In [8]:
encoded_data

'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJleHAiOjE2MjcyMjY4NDUsImlhdCI6MTYyNzIyNjI0NSwic2VjcmV0IjoiU29tZXRoaW5nIHRvIGVuY29kZSJ9.CombVr-757PXau8yeXtyjCLn54E3pGNntlnpoADnPRI'

### If you try to debug this using https://jwt.io, You will see the decoded data.

![image.png](attachment:e8f8d629-1400-4408-8635-251339b20a65.png)

#### To decode the data you need the same signature

In [9]:
decoded_data = decode_token(encoded_data, secret)

In [11]:
decoded_data['decoded']['secret']

'Something to encode'

#### If you try to decode using some other secret key, the data won't be decoded correctly

In [12]:
decoded_data = decode_token(encoded_data, 'some-other-secret')

In [13]:
decoded_data

{'auth': False, 'error': 'Invalid token'}