TonyM.66079 (Customer) asked a question.
How can I obtain a Private Key for Private Key JWT Signing
Hello
Does anyone know how I can obtain the private key in OKTA?
Thank you
Tony
- adrian.lazar1.5246165696163735E12 (Vendor Management)
Hello Tony.
This is Adrian with the Developer Support Team at Okta. Thank you for raising this concern in our community.
Private Keys used to sign JWT are not exposed. On the /oauth2/{authorizationServerId}/v1/keys you can retrieve the kid used to sign the JWT token.
Here is a PHP example that demonstrates how the signature of a JWT is validated using the kid:
https://github.com/dragosgaftoneanu/okta-simple-jwt-verifier
If you have further questions in regards of this matter, please open a support ticket by sending a email to developers@okta.com
Thank you,
Adrian Lazar
Developer Support Engineer
Expand Post - TonyA.39653 (Customer)
How do I generate PrivateKey to use in the following routine?
var client = new OktaClient(new OktaClientConfiguration
{
OktaDomain = "https://{{yourOktaDomain}}",
AuthorizationMode = AuthorizationMode.PrivateKey,
ClientId = "{{clientId}}",
Scopes = new List<string> { "okta.users.read", "okta.apps.read" }, // Add all the scopes you need
PrivateKey = new JsonWebKeyConfiguration(jsonString)
});
Expand Post
This question is closed.
Hello Tony.
This is Adrian with the Developer Support Team at Okta. Thank you for raising this concern in our community.
Private Keys used to sign JWT are not exposed. On the /oauth2/{authorizationServerId}/v1/keys you can retrieve the kid used to sign the JWT token.
Here is a PHP example that demonstrates how the signature of a JWT is validated using the kid:
https://github.com/dragosgaftoneanu/okta-simple-jwt-verifier
If you have further questions in regards of this matter, please open a support ticket by sending a email to developers@okta.com
Thank you,
Adrian Lazar
Developer Support Engineer