pocv5 (pocv5) asked a question.
How to get the correct jwk information for jwt
We are doing a login access test and applied for an okta openid (Application type Single Page App (SPA)).
When I do jwk verification after I get the access token after logging in, the verification finally fails.
We get jwks from the this URL(https://mcointernal.okta.com/oauth2/v1/keys?client_id=0oajxei88pWb6QjXV357) for verification.
The reason is that the way we get jwks is wrong? or some other reason?
issuer = https://mcointernal.okta.com/
client_id=0oajxei88pWb6QjXV357
authorization-server: https://mcointernal.okta.com/.well-known/oauth-authorization-server?client_id=0oajxei88pWb6QjXV357
jwks url: https://mcointernal.okta.com/oauth2/v1/keys?client_id=0oajxei88pWb6QjXV357
Hi @pocv5 (pocv5) , Thank you for reaching out to the Okta Community!
Not sure if you had a chance to review our docs on the subject:
https://developer.okta.com/docs/guides/build-self-signed-jwt/java/main/
https://developer.okta.com/docs/reference/api/oidc/#client-authentication-methods
My advice would be to also reach out to the devforum.okta.com to take advantage of their expertise.
While we'll do our best to answer all of your questions, this medium is more inclined towards Okta core products.
Hope it helps!