Hi, i'm trying to verify a jwt using a jwks and reading the documentation i've found that the verify policy can automatically lookup for the matching kid in the jwks and choose that key. The policy is able to choose the correct jwk but it always fail when try to parse the key. The error description is this:
{"fault":{"faultstring":"Failed to parse key: policy(VerifyJWT)","detail":{"errorcode":"steps.jwt.KeyParsingFailed"}}}
I'm using a service callout to retrive the jwks and my verify jwt policy look like this:
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<VerifyJWT continueOnError="false" enabled="true" name="VerifyJWT">
<DisplayName>VerifyJWT</DisplayName>
<Algorithm>RS256</Algorithm>
<PublicKey>
<JWKS ref="calloutResponse2.content"/>
</PublicKey>
<Source>jwt-token</Source>
</VerifyJWT>
the jwks that i'am using is:
{"keys":[{
"kty":"RSA",
"n":"-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----",
"e":"AQAB",
"alg":"RS256",
"kid":"1234"
}]
}
Thank you
LinkedIn
Twitter
