Secure a FastAPI Server with Auth0 - Invalid User

JaimeFabian · April 7, 2022, 4:15pm

Hi everyone,

I’m setting up a server with FastAPI and I want to secure its endpoints using Auth0.

I’ve followed and implemented this article Build and Secure FastAPI Server with Auth0 and also this video How to Protect an API in FastAPI with Auth0.

Right now, if I want to test the configured API in Auth0 requesting a token with my client id and client secret, I receive the following error back:

{'status': 'error', 'message': 'Invalid issuer'}

I’ve verified the token in jwt.io and looks correct and also verified my domain, api audience, issuer, and algorithms variables and can’t see any issues.

I haven’t found further information to this error and that’s why I’m posting this here. Hopefully someone could help me or if anybody has any ideas, I would appreciate it very much!

Best regards,
Jaime

cellador · February 6, 2023, 12:57pm

Hey Jaime,

it’s been a while since you posted but I just ran into the same issue and found a solution. Maybe this can be of help for people encountering the same:

Take your bearer token, decode it on https://jwt.io/ and check the iss payload value. The issuer parameter that you use to set up your PyJWK client with has to match that value exactly. I was missing a / at the end of the string.

Hope that helps,
Best regards.

konrad.sopala · February 6, 2023, 1:34pm

Thanks for sharing that with the rest of community!

dan-auth0 · February 16, 2023, 11:04pm

If you run into issues like this in the future, you can also build a custom full-stack code sample to troubleshoot full-stack issues like this.

JaimeFabian · February 17, 2023, 7:45am

Hi cellador! Thanks for your reply. I’m not able to test your suggestion currently since we went for a custom implementation on our side but for a new project I will definitely try this

Thanks for sharing!

system · March 3, 2023, 7:46am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.