Issue and verify JWT tokens (Medium post)

jwt_tokens.py

import jwt

from datetime import datetime, timedelta


JWT_SECRET = '****CHANGE_THIS_TO_KICKASS_SECRET_$#($#@(&$(_CHANGE_THIS_TO_KICKASS_SECRET_#*@#*(@_CHANGE_THIS_TO_KICKASS_SECRET****'
JWT_ALGORITHM = 'HS256'
JWT_EXP_DELTA_SECONDS = 900


def give_jws_token(email):

    payload = {
        'email': email,
        'exp': datetime.utcnow() + timedelta(seconds=JWT_EXP_DELTA_SECONDS)
    }
    jwt_token = jwt.encode(payload, JWT_SECRET, JWT_ALGORITHM).decode('ascii')

    return jwt_token


def validate_jwt(jwt_token):
    try:
        payload = jwt.decode(jwt_token.encode('utf-8'), JWT_SECRET, algorithms=[JWT_ALGORITHM])
    except (jwt.DecodeError, jwt.ExpiredSignatureError):
        payload = None

    return payload