← All Labs
JWT — None Algorithm Bypass
InvoiceCloud uses JWTs for authentication. The library accepts the algorithm specified in the token header — including 'none'. Forge a token to impersonate the admin.
InvoiceCloud uses JWTs for authentication. The library accepts the algorithm specified in the token header — including 'none'. Forge a token to impersonate the admin.