Overview

ZK-JWT enables anonymous verification of JWT signatures while masking specific claims. It allows verification of JWTs from specific issuers or domains, as well as verification based on specific claims in the payload, all while maintaining privacy through zero-knowledge proofs. The system consists of three core packages that handle circuit generation, on-chain verification, and helper utilities.

Authentication Flow

JWT Generation & Proof Creation

Verification Process

The verification process maintains privacy while ensuring authenticity:

JWT signature is verified through RSA validation
Claims are selectively revealed using zero-knowledge proofs
Domain verification is handled through anonymous Merkle proofs
On-chain verification confirms proof validity without exposing JWT data

Documentation

📄️ Circuits

Zero-knowledge circuits for JWT verification

📄️ Contracts

On-chain verification contracts

📄️ Helpers

TypeScript utilities for circuit inputs and JWT handling

Authentication Flow​

JWT Generation & Proof Creation​

Verification Process​

Documentation​