How to generate a secure value for JWT_SECRET

How to Create a High-Strength JWT_SECRET

A secure secret must be long, random, and unpredictable. Simple phrases, dictionary words, or short strings are easily brute-forced or cracked using common tables.

A good secret should be at least 32 bytes long (which results in a longer Base64 string) and generated using a cryptographically secure pseudo-random number generator (CSPRNG).

Generating a Strong Secret

Use your operating system's built-in cryptographic tools to generate the string.

  1. On Linux/macOS (Bash): The openssl rand command is a reliable way to generate a strong random string. The -base64 32 flag generates 32 cryptographically random bytes and encodes them in Base64 for safe use in environment files.

    Bash
    openssl rand -base64 32

  2. On Windows (PowerShell): PowerShell offers a secure way to generate byte arrays using the .NET Framework's RNGCryptoServiceProvider. This ensures the randomness is suitable for cryptographic purposes.

    PowerShell
    $bytes=New-Object Byte[] 32; (New-Object System.Security.Cryptography.RNGCryptoServiceProvider).GetBytes($bytes); [Convert]::ToBase64String($bytes)

Comments

Post a Comment

Popular posts from this blog

How to build MCP Server and use MCP Inspector in Node

Image
  Run the below 3 command to create a new node project Run the below command to add required dependencies npm install @modelcontextprotocol/sdk axios dotenv Run the below command to add dev dependencies npm install --save-dev typescript @types/node Create  tsconfig.json  file in the root of the repository and paste the below code { "compilerOptions": { "target": "ES2022", "module": "Node16", "moduleResolution": "Node16", "outDir": "./build", "rootDir": "./src", "strict": true, "esModuleInterop": true, "skipLibCheck": true, "forceConsistentCasingInFileNames": true }, "include": ["src/**/*"], "exclude": ["node_modules"]  }  Create a new folder named src in project root repository and create a file named index.ts and paste the below code  #!/usr/bin/env node ...
Read more

How to install ngrok in wsl for activepieces

Image
 To install ngrok in your wsl system, go to your wsl and open the terminal. Step 1: Download the ngrok zip file Run the following commands: cd ~ wget https://bin.equinox.io/c/bNyj1mQVY4c/ngrok-stable-linux-amd64.zip Step 2: Unzip the file sudo apt update sudo apt install unzip -y unzip ngrok-stable-linux-amd64.zip This will extract a file called ngrok . Step 3: Move ngrok to a system path sudo mv ngrok /usr/local/bin You can now run ngrok from anywhere in the terminal. Step 4: Connect your ngrok account If you don't have an account, sign up here: https://dashboard.ngrok.com/signup Then get your authtoken from: https://dashboard.ngrok.com/get-started/setup Copy the token and run: ngrok config add-authtoken YOUR_AUTHTOKEN_HERE Example: ngrok config add-authtoken 1h3JKiO9abcdXYZ1234EXAMPLE Step 5: Start ngrok use below command to start ngrok ngrok http 4200   Now localhost:4200 can be accessible in https://156858be73e9.ngrok-free.ap For accessing activepieces through ng...
Read more