WSO2IS JWT access token

I am trying get a JWT access token from WSO2 IS. I followed instructions from msf4j Oauth2 Security Sample, and managed to get a JWT acces token by resource owner password grant type. but I have problem authenticating the token externally.

it seems that the token had not been signed by the default "wso2carbon.jks".

also, my claim configurations in the "service providers" was not reflected in jwt content

so my questions: how to config the JWT signing certificate in WSO2IS?

and also: How to manipulate the claims in the JWT?

I do not want to turn to the "introspect" endpoint out of performance concern, and my strategy is to just trust the IS, only to make sure(locally) of the authenticity of the JWT token

please advise

thanks

Solution

You can follow [1] to get JWT Access Tokens(Self contained access tokens) using WSO2 Identity Server

[1] https://medium.com/@hasinthaindrajee/self-contained-access-tokens-with-wso2-identity-server-82111631d5b6

Auth0 React SPA incorrect access token for API
Laravel API response Unauthenticated even when Authentication is passed
io.jsonwebtoken.UnsupportedJwtException: Signed Claims JWSs are not supported
Any way to generate Supabase ANON_KEY and JWT_SECRET locally?
Keycloak authorization on behalf of another user
Migrating from validate-jwt to validate-azure-ad-token policy
Where to save a JWT in a browser-based application and how to use it
Json Web Token verify() return jwt malformed
JWT validation failure error in azure apim
How to convert spring boot app with Okta to read okta groups
Google Cloud Functions - ImportError: cannot import name 'InvalidKeyError' from 'jwt.exceptions'
Microsoft as OAuth2 provider for personal accounts does not issue JWT access tokens
NestJS JWT Strategy requires a secret or key
How to create a Json Web Token (JWT) using OpenSSL shell commands?
Is it safe to keep access token in NextAuth session?
Verifying JWT signed with the RS256 algorithm using public key in C#
JWT generate token with algorithm ES256
Generating JWT token with JwtUtil class in Spring Boot resulting in NullPointerException
MSAL AcquireSilent gets always new token
In Identity Server 4, I have a User's identity but 0 Claims
I'm trying to create a Pydantic extension that allows me to deserialize jwt strings into pydantic models
Is setting Roles in JWT a best practice?
Get email claim from identity after upgrading to .NET 8 not working
How to decode jwt token in POSTMAN?
Firebase "getIdToken(true)" in Java Backend
AWS cognito: What's the difference between Access and Identity tokens?
Receiving attempted import error for JWT in Next.js
How do I solve audience (aud) invalid claim error for downstream api service?
Header sent error express.js with cookie-parser
[NestJs]: JwtModule.register() not working