I can\'t quite understand how secure JWT tokens are. If a user makes an HTTP request and the JWT token is authorized. Can I fetch the UserId from the JWT (we of course store
