Lab Hint
Change the value of the user claim, then resubmit the JWT to the application
Videos
JWT Security: Part 1 - What is a JWT?JWT Security: Part 2 - How to View JWT in Burp-SuiteJWT Security: Part 3 - How Timeouts WorkJWT Security: Part 4 - How Signatures Protect Against ForgeryJWT Security: Part 5 - Why use Certificate-based Signatures?JWT Security: Part 6 - Importance of Input Validation