Hi, cas is not supposed at all to internally validate the JWT, since it should be generated by cas only after the ST is internally validated, (as its shown on the documentation flow diagram).
When it happened to me, it was because i was using a cas client which was applying the cas protocol providing back the ticket argument to the validation endpoint of cas. Could you check that you are not using any cas client and provide your app code that you are using to validate the jwt? regards Michele On Monday, February 4, 2019 at 7:24:23 PM UTC+1, srmudigan wrote: > > Hi Michele, > > I have gone through the link. But before I implement reading the token on > client side, i need to disable the validation happening on cas side. Could > you help me how to disable the validation that's happening on cas as it's > doing JWTvalidation like ST ticket ? It looks like after JWT is generated, > it's getting validated on cas. The generated URL has > redirected=true&ticket=JWT-ticket. May be that's causing the automatic > validation ? It looks like the jwt ticket is not even reaching client. So > can you please suggest how to stop the validation ? > > Thank you for your help. > > Regards, > srmudiganti > > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/adf9ce56-345e-4ec7-a03b-5747ed23fab2%40apereo.org.
