JWT Bypass Challenge
====================

Endpoint: https://demo.syssecure.pl/api/jwt-challenge (Coming soon)

Sample JWT Token:
eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJ1c2VyIiwicm9sZSI6Imd1ZXN0IiwiaWF0IjoxNjQwMDAwMDAwfQ.dummy_signature

Public Key (available at /api/public-key):
The server uses RS256 algorithm, but might accept other algorithms...

Hint: Algorithm confusion is a well-known JWT vulnerability.