Encrypt JS/PHP GET parameter

It is mandatory to use the get method?

If you are talking about Base64 security it is not to encrypt and neither any method I know will serve you like this, I believe the way is to use HTTPS.

Not really. I could use the POST. But my question is whether it would be possible to make the GET secure. Even if I use the POST, it would still be possible for any personnel to capture the headers and inspect the variables. which makes my application insecure. So independent of GET or POST. How to encrypt and ensure decoding in JS/PHP

To use get safely you would need to use an SSL certificate and use HTTPS. And the safest way is by the post method.

JWT still has many flaws ...

Any encryption would be insecure in client side, since it is possible to know which algorithm was used to encrypt. You need data to be encrypted in PHP before rendering HTML - the ID 1 becomes a3d296261dbda886e8685e4bad338bf4

Base64 is not encryption and Base64 has no problem with UTF-8. And there is no point in "encrypting" anything on the JS side, as it can be undone with peace of mind. Even if you send a different key to the JS for each request, whoever intercepts the communication will have access to it. HTTPS is what you can do (and even so, against third parties, because on the client side, everything is accessible).

It has some faults yes: http://stackoverflow.com/questions/30106476/using-javascripts-atob-to-decode-base64-doesnt-properly-decode-utf-8-strings

Try to encrypt the contents of the data using the Crypto-js: https://github.com/brix/crypto-jslibrary