setting jti in tokens with Auth0 Management API v2

eric.barault · July 23, 2017, 3:29pm

After many tries, i wonder if the following documentation on setting the jti claim in jwt tokens is still valid: blacklists

I defined a rule according to the example:

function (user, context, callback) {
  user.jti = require('uuid').v4();
  callback(null, user, context);
}

then i’m generating a token with the authorize endpoint as follows:

https://mydomain.auth0.com/authorize
    ?audience=https://mydomain.auth0.com/api/v2/
    &scope=openid%20jti&response_type=token
    &client_id=KY4QozMN4ad0...wgoKYUYE
    &redirect_uri=https://www.example.com
    &state=STATE
    &nonce=NONCE

I tried several scopes (openid, openid profile, openid jti) and both response_type token and id_token, but i never get the jti claim in the generated tokens.

Could you indicate the correct way to get the jti claim in jwt tokens generated for the management api v2 so i can use the blacklist feature to invalidate long lived tokens?

jmusgrave · August 18, 2017, 11:38pm

Did you get this figured out?

jmusgrave · August 18, 2017, 11:38pm

Did you get this figured out?

Topic		Replies	Views
Getting JTI Tokens for Blacklist Management API Help jwt , api , rules , management-api	2	5961	July 10, 2020
Jti field doesn't work Help token , jwt , claims , jti	5	7409	July 28, 2020
Jti in Management API logs Help	2	3297	August 1, 2020
Blacklisting tokens JWT.io jwt , api	7	8937	January 23, 2019
Auth0-js Management getUser returning 401 Invalid Token when using JWT idToken Help javascript , management-api , access-token , react	4	5104	August 15, 2019

setting jti in tokens with Auth0 Management API v2

Related Topics