Hello,
I am using https://jwt.io/ to test JWT/JWS creation. However, adding a “crit” section to my header and populating the string array seems to make the signature invalid.
This is a valid header:
{
“alg”: “PS256”,
“exp”: 1598075289,
“asdf”: [“test”]
}
This header makes the signature appear as invalid:
{
“alg”: “PS256”,
“exp”: 1598075289,
“crit”: [“exp”],
“asdf”: [“test”]
}
Why is this the case?
Thanks,
Jay