How can I use the java JWT code for Apigee to validate an incoming JWT?

Not applicable

I need to check if the key is correct and if the JWT isn't expired.

How can I use the code at https://github.com/apigee/iloveapis2015-jwt-jwe-jws/tree/master/jwt_signed to do this?

Solved Solved
0 2 536
1 ACCEPTED SOLUTION

Hi,

Implicitly the JWT policy will check that the JWT is not expired, and that the key you provide, either a secret key or a public key, can verify the signature on the JWT.

The repository you referenced includes a README that shows how to use the policy and discusses it in detail. It has numerous examples. Have you looked there? I can answer any specific questions you have, after having looked through that.

View solution in original post

2 REPLIES 2

Hi,

Implicitly the JWT policy will check that the JWT is not expired, and that the key you provide, either a secret key or a public key, can verify the signature on the JWT.

The repository you referenced includes a README that shows how to use the policy and discusses it in detail. It has numerous examples. Have you looked there? I can answer any specific questions you have, after having looked through that.

Thanks, I reread the readme and found it this time. 🙂