[keycloak-user] Cannot verify ES256 JWT token
jeet parmar
jeet at glabbr.com
Thu May 9 10:41:18 EDT 2019
Hello All,
I was using RS256 algo till now and had not problems in verifying them until i upgraded to 6.0.1 as i wanted to use ES256.
After upgrading to 6.0.1 and changing default token algo ES256 I am no longer able to validate token signature.
Step to reproduce.
Create a realm
Add ecdsa-genenrated key provider with P-256
Set default token algo ES256
Generate a JWT token using login procedure
go to https://jwt.io/
select algo as ES256
Paste the token
Paste the public key which you get from Keys tab for ECDSA key.
It fails with invalid signature.
Above same workflow with RSA256 works perfectly fine.
Please help on this.
Thanks,
Jeet
Glabbr
https://glabbr.me/jeety
More information about the keycloak-user
mailing list