JWT Structure:

• Header: Contains token type and signing algorithm
• Payload: Contains claims (user data, permissions, expiration)
• Signature: Used to verify token authenticity

Common Claims:

• iss (Issuer): Who issued the token
• sub (Subject): Who the token is about
• aud (Audience): Who the token is intended for
• exp (Expiration): When the token expires
• iat (Issued At): When the token was issued
• nbf (Not Before): When the token becomes valid