Verify user in Node.js backend

Hey,

So how do I verify that the JWT being sent hasn’t been tampered with or generated by someone else. I don’t have a way to provide a secret for identity to use in this way as far as I know

Thanks

Jonathan