Error in decoding photo URL from Facebook login that stored in JWT Token

I'm using ASP.Net Core Identity to store user info in JWT Token. I found that there is a problem with decoding the token that consists of Url Photo from Facebook.

Here is the way I'm decoding the token with javascript:


and it results in the following error:

Failed to execute 'atob' on 'Window': The string to be decoded is not correctly encoded.

Referring to this post I think that there must be some replacement in the back-end with C# on the photo URL. I applied the changes but it wasn't useful.

Here is the URL I got from Facebook:

Create a token that include photo Url received from Facebook.

    public async Task<DtoAuthenticationResult> CreateTokenAsync(AppUser user)
        var claims = new List<Claim>
            new ("UserName", user.UserName),
            new ("PhotoUrl", user.ProfilePhotoUrl),
            new Claim(JwtRegisteredClaimNames.Jti, Guid.NewGuid().ToString()),

        var roles = await _userManager.GetRolesAsync(user);

        claims.AddRange(roles.Select(role => new Claim(ClaimTypes.Role, role)));

        var cred = new SigningCredentials(_key, SecurityAlgorithms.HmacSha512);

        var tokenDescriptor = new SecurityTokenDescriptor
            Subject = new ClaimsIdentity(claims),
            //Expires = DateTime.Now.Add(_jwtSettings.TokenLifeTime),
            Expires = DateTime.UtcNow.AddSeconds(120),
            SigningCredentials = cred

        var tokenHandler = new JwtSecurityTokenHandler();

        var token = tokenHandler.CreateToken(tokenDescriptor);
        return new DtoAuthenticationResult
            Success = true,
            Token = tokenHandler.WriteToken(token)



export class UserToken {
  token: string;
  success: string;
  errors: string[];

facebookAuth(model: SocialUser) {
   return + 'account/facebookAuth', model)
   .pipe(map((response: UserToken) => {
       const user = response;

setCurrentUser(authResult: UserToken) {
    const user: User = this.getDecodedToken(authResult.token);

 getDecodedToken(token: string) : User {
    let u = JSON.parse(atob(token.split('.')[1]));
    let usr = new User();

Update 2:

Token value :



  • You need to convert base64url encoding to the usual base64 first. Please Try this code:

    var base64Url = token.split('.')[1];
        var base64 = base64Url.replace(/-/g, '+').replace(/_/g, '/');
        var jsonPayload = decodeURIComponent(atob(base64).split('').map(function(c) {
            return '%' + ('00' + c.charCodeAt(0).toString(16)).slice(-2);