> ## Documentation Index > Fetch the complete documentation index at: https://help.suggix.com/llms.txt > Use this file to discover all available pages before exploring further. # Generate SSO Token > Generate JWT-based SSO tokens on your server for Suggix authentication. ### Install a JWT library We use JSON Web Tokens to securely authenticate your users. First, install the appropriate JWT library for your server. Go to your Suggix [**Dashboard → Settings → Developer**](https://www.suggix.com/_/settings/developer) to find your SSO private key. "private_key"

Store this key securely on your server and never share it publicly. ```bash theme={null} npm install --save jsonwebtoken ``` ```bash theme={null} dotnet add package System.IdentityModel.Tokens.Jwt ``` ```bash theme={null} go get github.com/golang-jwt/jwt ``` ```bash theme={null} # See instructions here: https://mvnrepository.com/artifact/io.jsonwebtoken/jjwt ``` ```bash theme={null} composer require firebase/php-jwt ``` ```bash theme={null} pip install PyJWT ``` ```bash theme={null} sudo gem install jwt ``` ```js theme={null} var jwt = require('jsonwebtoken'); var PrivateKey = 'Your SSO Private Key'; function createSSOToken(user) { var userData = { email: user.email, name: user.name, id: user.id, // optional photo_url: user.photo_url, // optional }; return jwt.sign(userData, PrivateKey, {algorithm: 'HS256'}); } ``` ```c# theme={null} using System; using System.IdentityModel.Tokens.Jwt; using System.Security.Claims; using System.Text; using Microsoft.IdentityModel.Tokens; public class JwtHelper { private static string PrivateKey = "Your SSO Private Key"; public static string CreateToken(User user) { byte[] keyBytes = Encoding.UTF8.GetBytes(PrivateKey); var securityKey = new SymmetricSecurityKey(keyBytes); var credentials = new SigningCredentials(securityKey, "HS256"); var header = new JwtHeader(credentials); var payload = new JwtPayload { { "email": user.email }, { "name": user.name }, { "id": user.id }, // optional { "photo_url": user.photoURL }, // optional, but preferred }; var securityToken = new JwtSecurityToken(header, payload); var handler = new JwtSecurityTokenHandler(); return handler.WriteToken(securityToken); } } ``` ```go theme={null} import ( "github.com/golang-jwt/jwt" ) const PrivateKey = "Your SSO Private Key" func createSSOToken(user map[string]interface{}) (string, error) { token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{ "email": user["email"], "name": user["name"], "id": user["id"], // optional "photo_url": user["photo_url"], // optional }) return token.SignedString([]byte(PrivateKey)); } ``` ```java theme={null} import java.util.HashMap; import io.jsonwebtoken.Jwts; import io.jsonwebtoken.SignatureAlgorithm; public class SSOTokenCreator { private static final String PrivateKey = "Your SSO Private Key"; public static String createToken(User user) throws Exception { HashMap userData = new HashMap(); userData.put("email", user.email); userData.put("name", user.name); userData.put("id", user.id); // optional userData.put("photo_url", user.photoURL); // optional return Jwts.builder() .setClaims(userData) .signWith(SignatureAlgorithm.HS256, PrivateKey.getBytes("UTF-8")) .compact(); } } ``` ```php theme={null} use \Firebase\JWT\JWT; const PrivateKey = 'Your SSO Private Key'; function createSSOToken($user) { $userData = [ 'email' => $user['email'], 'name' => $user['name'], 'id' => $user['id'], 'photo_url' => $user['photo_url'], // optional ]; return JWT::encode($userData, PrivateKey, 'HS256'); } ``` ```python theme={null} import jwt private_key = 'Your SSO Private Key' def create_sso_token(user): user_data = { 'email': user.email, 'name': user.name, 'id': user.id, # optional 'photo_url': user.photo_url, # optional } return jwt.encode(user_data, private_key, algorithm='HS256') ``` ```ruby theme={null} require 'jwt' PrivateKey = 'Your SSO Private Key' def createSSOToken(user) userData = { email: user.email, name: user.name, id: user.id, #optional photo_url: user.photo_url, # optional } JWT.encode(userData, PrivateKey, 'HS256') end ```