Hello, I'm trying to validate a JWT produced by CAS (version 6.0.x) on the website https://jwt.io/#debugger. The answer is "Invalid Signature"
The documentation describing the flow I try to implement can be found here : https://apereo.github.io/cas/6.0.x/installation/Configure-ServiceTicket-JWT.html Just to clarify, i'm trying to get a JWT instead of a Service Ticket after a successfull authentication and not trying to authenticate using a JWT. I configured my "application.properties" file with these parameters ## # JWT - Encrypt Tokens # cas.authn.token.crypto.enabled=true cas.authn.token.crypto.encryptionEnabled=true cas.authn.token.crypto.signingEnabled=true cas.authn.token.crypto.encryption.key=xxxxxxxxxxxx (real chain replaced by xxxx!) cas.authn.token.crypto.signing.key=xxxxxxxxxxx (real chain replaced by xxxx!) In the cas log, i have these information : INFO [org.apereo.cas.util.cipher.BaseStringCipherExecutor] - <Signing is not enabled for [Token/JWT Tickets]. The cipher [RegisteredServiceJwtTicketCipherExecutor] will attempt to produce plain objects> I cannot find how to correctly enable this featured for JWT. Many thanks for your help, Cyrus -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/d43b2fab-35da-46cc-8594-66503a30f649%40apereo.org.
