Hi. I’m new to JWT and have been generating them with command line after receiving a key pair from a company whose api I need to integrate with. Their requirements for their token signature are specified as RSASHA256( base64UrlEncode(header) + “.” + base64UrlEncode(body), “<your_public_RSA_key>”, …

Hey there @vivaladata welcome to the community! Thanks for the detailed description - Not sure how much I can help, but the behavior you’re describing is odd indeed :thinking: The JWT should only be signed using the private key, not verified. jwt.io is be able to verify an RS256 jwt by just pastin…

Why does the token change when private key is entered in verify signature?

JWT.io

tyf August 5, 2024, 9:21pm 3

Hey there @vivaladata welcome to the community!

Thanks for the detailed description - Not sure how much I can help, but the behavior you’re describing is odd indeed The JWT should only be signed using the private key, not verified.

jwt.io is be able to verify an RS256 jwt by just pasting it into the “Encoded” field - No other action is required:

It’s hard to know what could be going on with the API you are attempting to pass the JWT to, but to my knowledge all validation libraries work this same way.

Topic		Replies	Views
JWT creation using RS256 JWT.io rs256	1	3758	January 26, 2023
Why do I need a private key to verify a JWT? JWT.io jwt , rs256	5	2337	March 18, 2024
How to verify signature in the debugger for RS256? JWT.io jwt-debugger , jwtio	2	5075	August 27, 2019
JWT.io Debugger does validate at all. Considers ANY secret as valid. How is this possible? JWT.io jwt-debugger	3	1729	September 25, 2023
JWT - Issue creating token with X509 Private Key JWT.io rs256 , x509	3	6800	July 12, 2023

Why does the token change when private key is entered in verify signature?

Related topics