I know that it was discussed widely but I can\'t sum on what I read.
Is it correct that JWT is put to HTTP headers without encoding? Only being signed on. So that\'s comm
