Java-jwt - How to supply RSA keys?

chanan · June 20, 2023, 4:42pm

Hello,

I signed up for Auth0 and created an application and API. The code base we have is okd version JAX-RS and I haven’t been able to use the quickstarts. So I would like to use java-jwt to verify the token in the API.

However, so setup java-jwt you need the public and private key RSA keys.

Why do I need the to supply the keys? shouldn’t the library get them from the “well-known” urls?
Why would I need the private key at all to verify jwt tokens?

Thanks,
Chanan

ty.frith · June 20, 2023, 9:43pm

Hey there @chanan welcome to the community!

This library does not support obtaining keys from a JWKS endpoint (well-known) - You could utilize our jwks-rsa-java as well to implement obtaining keys. See this documentation as well.

I don’t believe the private key is required - Have you tried omitting it or simply passing null?

Keep us posted!

Topic		Replies	Views
RSA256/JWKS JWT validation using Auth0's `java-jwt` and `jwks-rsa-java` Get Help java-jwt-support-doc	5	22177	October 17, 2022
I'm trying to test the API protection flow but I don't know where to set private key for the JWT token Get Help apis , application	2	557	October 26, 2023
If we can not get the private key when use choose RSA256 as JWT signature algorithm JWT.io private-key	2	8412	March 28, 2019
Where is the Auth0 public key to be used in jwt.io to verify the signature of a RS256 token? Get Help auth0 , certificate , jwtio , rsa	6	43047	September 15, 2022
Need help converting Javascript JWT parsing into Java using Auth0 libs JWT.io jwt , javascript , java , java-jwt-support-doc	1	3316	August 4, 2020

Java-jwt - How to supply RSA keys?

Related topics