JayH.63959 (Customer) asked a question.
I'm trying to validate my token using the node OktaJwtVerifier library. I am using a custom authorization server. I am receiving the following error 'Error while resolving signing key for kid "bySSTYuNg4LVGzDPs8fZ..."'
I've pulled all my end-points from .well-known/oauth-authorization-server so I'm reasonably certain they are correct.
I have my access token from a previous call and if I call the introspect end-point with my access token it returns confirms it as active.
I copied my 'aud' from my activation server and confirmed that it's the same in the introspect and if I base64 decode the token.
The kid from the error is the same kid from the /v1/keys end-point.
Basically, from a visual inspection everything looks ok. Anyone have insight into what I'm doing wrong?
Hi Jay,
Please make sure the fields like 'issuer' and 'clientId' are right when you create OktaJwtVerifier
instance. If you still have issues, please create a case for Okta support or email developers@okta.com with your code snippet and a sample JWT token for further assistance.
Thanks,
Padma
What is the issuer url you are adding
I'm pulling the issuer from https://testlogin.cta.tech/oauth2/ausmxfhi4ofHgVSjr0h7/.well-known/oauth-authorization-server
The value is:
issuer: "https://testlogin.cta.tech/oauth2/ausmxfhi4ofHgVSjr0h7"
I am also facing the same issue. The same codebase worked with Developer account but when I use it with company okta server. it gives me same issue the one you mentioned above.