JWTGenerateSecret

Generates a cryptographically random HMAC secret and returns it Base64-encoded. Use this to create RFC 7518–compliant keys for HS256/384/512.

Method Signature

JWTGenerateSecret( [bits] )

Arguments

Argument

Type

Required

Description

Default

bits

numeric

Key length in bits. Must be ≥ 128 and a multiple of 8.

256

Returns

A Base64-encoded string of bits / 8 random bytes.

Examples

secret256 = jwtGenerateSecret();       // 256-bit, suitable for HS256
secret384 = jwtGenerateSecret( 384 );  // 384-bit, suitable for HS384
secret512 = jwtGenerateSecret( 512 );  // 512-bit, suitable for HS512

// Save to an environment variable / secret manager
writeOutput( "JWT_HMAC_SECRET=" & secret256 );

JWTGenerateKeyPair() — asymmetric key pairs
Key Management Guide
Security Best Practices

PreviousJWTNew NextJWTGenerateKeyPair

Last updated 21 days ago

Was this helpful?

Good evening

Method Signature

Arguments

Returns

Examples

Related