Auth0 is sending a RS256 signed token instead of HS256 signed token

lahiruchandima · September 17, 2017, 7:57am

I am trying to obtain an auth token with Auth0 java client.

In Auth0, I have a non interactive client. JsonWebToken Signature Algorithm is set to HS256 in the client. I use following code to obtain the token.

AuthAPI auth = new AuthAPI("my.domain", "my_client_id", "my_client_secret");
AuthRequest request = auth.login("username", "password").setAudience("my_audience");
TokenHolder holder = request.execute();

But, the token I receive is signed with RS256 instead of HS256.

What could be the problem here?

awsnonprod · October 14, 2017, 2:36am

lahiruchandima, I’m running into the same issue: I get a token back, but instead of being an HS256 token, it’s a RS256 one, as indentified by JWT.io. Any hope?

lahiruchandima · October 14, 2017, 8:04am

I got an answer for this in Stack Overflow. Auth0 is sending a RS256 signed token instead of HS256 signed token - Stack Overflow

lahiruchandima · October 14, 2017, 8:04am

I got an answer for this in Stack Overflow. Auth0 is sending a RS256 signed token instead of HS256 signed token - Stack Overflow

Topic		Replies	Views
Authorization API signs JWTs as RS256 when HS256 is selected Get Help token , rs256 , hs256 , algorithm	7	11720	March 2, 2018
id_token retrieved in RS256 instead of HS256 (Auth0, Swift) Get Help auth0 , rs256 , hs256 , authorization , swift	2	5058	March 2, 2018
Auth0 lock client returns hs256 but need a rs256 Get Help rs256 , auth0-lock , hs256	3	4899	March 2, 2018
Server returns RS256 but HS256 is selected Get Help rs256 , hs256 , ios , token-validation , algorithm	6	6215	March 2, 2018
Suddenly RS256 tokens generated from HS256 apps Get Help jwt , auth0	11	3364	March 28, 2020

Auth0 is sending a RS256 signed token instead of HS256 signed token

Related topics