JWE Certificate

JWE (JSON Web Encryption) is a standard for securely transmitting encrypted data between two parties. In digiRunner, JWE safeguards API communications by protecting sensitive data from unauthorized access. The encryption ensures both the confidentiality and integrity of the transmitted data.

• JWE encryption flowchart

Configuring JWE Signature Verification for API Requests and Responses

1. Go to API Management > API List, search for the API to be verified, and click on to enter the update page.

1. In the JWT Settings field, toggle the switch to enable the JWT function.

2. Select JWE from the Request drop-down menu.

3. Select JWE from the Response drop-down menu.

1. Click Update to complete the encryption.

Managing JWE Certificates

View JWE Certificate List

1. Go to Certificate Management > JWE Cert. List.

2. Set Date Range, and click Search.

3. View JWE encrypted certificates associated with specific API clients, including their status and expiration dates.

Upload JWE Certificates

1. Go to Certificate Management > JWE Cert. Management.

2. Enter the keyword in the Search Client field to search for the client, and click Search.

1. Locate the desired client in the results, and in the Action column, click on the icon to proceed.

2. In the details page, click on the icon to open the file selection window.

1. Select the required JWE certificate file, and click Open to upload it. The uploaded certificate will now be available for use with the associated API client.

Delete JWE Certificates

1. In the JWE Cert. Management section, locate the desired client, and in the Action column, click on the icon.

2. From the list of certificates, select the one you wish to delete and click on the button.

For more information, please refer to the JWS/JWE Integration.