[
https://issues.apache.org/jira/browse/NIFI-11014?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17653063#comment-17653063
]
Irudya Raj commented on NIFI-11014:
-----------------------------------
Hi David,
Appreciate your reply!
As you described at the end your reply, seems like NiFi needs to support device
flow grant type which is a potential improvement.
Would you recommend any workaround for NiFi token? Currently I need to manually
copy token from NiFi browser cookie to run my backend script.
> JWT token is rejected by NiFi when calling APIs
> -----------------------------------------------
>
> Key: NIFI-11014
> URL: https://issues.apache.org/jira/browse/NIFI-11014
> Project: Apache NiFi
> Issue Type: Bug
> Components: NiFi Stateless
> Affects Versions: 1.15.3
> Environment: NiFi with Keycloak as OIDC provider.
> Reporter: Irudya Raj
> Priority: Major
>
> I have created oauth token using spring boot and transferred this token to
> authorization header bearer. NiFi is configured with PS512 JWS algorithm via
> nifi.security.user.oidc.preferred.jwsalgorithm property. But the API request
> fails with message "nifi unable to validate the id token: signed jwt
> rejected: another algorithm expected, or no matching key(s) found"
> I am able to use NiFi web. Keycloak is configure to use PS512 algo for ID
> token and access tokens.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
