# Playground JWS+JWE

Send test signed and encrypted HTTP requests and receive signed and encrypted responses. Both signing and encryption are mandatory for this endpoint. The request must be a JSON Web Signature (JWS) wrapped in JSON Web Encryption (JWE) — any message that does not follow this format will be rejected.

The flow combines both JWS and JWE:
1. Request: Sign payload (JWS) → Encrypt signed JWT (JWE) → Send to Wise
2. Response: Receive encrypted response → Decrypt (JWE) → Verify signature (JWS)

{% admonition type="warning" name="" %}
Currently, the Wise API returns a generic 500 Internal Server Error for decryption failures across endpoints using JWE and JWS+JWE. For example, an invalid key can cause a decryption failure.

Our team is currently planning improvements for these types of error messages to make them more specific and clear. Thank you for your patience.
{% /admonition %}

Endpoint: POST /v1/auth/jose/playground/jwsjwe
Security: ClientCredentialsToken

## Header parameters:

  - `Accept` (string, required)
    Enum: "application/jose+json"

  - `x-tw-jose-method` (string, required)
    JOSE method identifier.
    Enum: "jws+jwe"


## Response 400 fields

## Response 500 fields