What is JWT? In essence it's a signed piece of data in JSON format. Because it's signed the recipient can verify its authenticity. Because it's JSON it weights very little. If you are after the formal definition, it's in the RFC 7519. This article was featured on Hacker News.
Full article