[&] Why were JWTs created?
- To offer a lightweight, stateless method for managing authentication
- To allow session management without using tokens
- To replace symmetric key algorithms in data transmission
- To provide server-side session storage

[&] How does a server validate a JWT during user authentication?
- By decrypting the payload
- By verifying the signature using a secret or private key
- By contacting the client's browser
- By storing it in local storage

[&] Which type of claim in JWT is typically used to store user-specific or application-specific data?
- Global Claims
- Private Claims
- Registered Claims
- Public Claims

[&] What are the three parts of a JSON Web Token (JWT)?
- Token, Secret, Data
- Metadata, Claims, Signature
- Algorithm, Session, Data
- Header, Payload, Signature

[&] Which part of the JWT contains claims about the user session?
- The Header
- The Payload
- The Metadata
- The Signature

[&] What is the purpose of the signature in a JWT?
- To provide metadata about the algorithm
- To ensure the token's integrity and authenticity
- To encrypt the header and payload
- To initiate the login process