Hello All,
I was using RS256 algo till now and had not problems in verifying them until i upgraded to
6.0.1 as i wanted to use ES256.
After upgrading to 6.0.1 and changing default token algo ES256 I am no longer able to
validate token signature.
Step to reproduce.
Create a realm
Add ecdsa-genenrated key provider with P-256
Set default token algo ES256
Generate a JWT token using login procedure
go to
https://jwt.io/
select algo as ES256
Paste the tokenĀ
Paste the public key which you get from Keys tab for ECDSA key.
It fails with invalid signature.
Above same workflow with RSA256 works perfectly fine.
Please help on this.
Thanks,
Jeet
Glabbr
https://glabbr.me/jeety