VerifyJWT policy steps.jwt.FailedToDecode

Not applicable

The JWT is generated in Okta. I have a React SPA and use the implicit flow.

Then I used Postman to send the request to API with the token in the Authorization header.

Below is my JWT policy.

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<VerifyJWT async="false" continueOnError="false" enabled="true" name="Verify-JWT-1">
    <DisplayName>Verify JWT-1</DisplayName>
        <JWKS ref="Pegr_dBj6EAkez5Fg3XdC6gw1d0jUFs7Xr9ufwSAIKo"/>
        <Claim name="groupclaim">Company.Posson.CST</Claim>

I tried different configurations for PublicKey Values but I am getting the below error.

    "fault": {
        "faultstring": "Failed to Decode Token: policy(Verify-JWT-1)",
        "detail": {
            "errorcode": "steps.jwt.FailedToDecode"

This was so straight forward setting up in Azure API Management. But my current company wants to move to APIGEE.

I think it should be straightforward.

0 2 425

Hi @Naseem Mohammed, I guess the issue is with,

        <JWKS ref="Pegr_dBj6EAkez5Fg3XdC6gw1d0jUFs7Xr9ufwSAIKo"/>

Use the ref attribute to pass the key in a flow variable. So before this policy apigee recommends using Encrypted KVM's or for testing cases use an Assign Message policy(Assign Variable).


<AssignMessage async="false" continueOnError="false" enabled="true" name="Assign-passphrase">

   <Value ref="publicKey"/>

-or try below config-


Hi Siddharth-

I tried AssignMessage recommendation but I am still getting the same error. I am adding little more details.



