Hi,I am trying to verify the the a token using the JWT's action named "ReadAndValidateToken".I am giving the JWK as a plain text as I receive from keys URL and then finding it via "GetJwkFromJwks" action.The error is mentioned below:Exceptions caught: ''. token: '[Security Artifact of type 'System.IdentityModel.Tokens.Jwt.JwtSecurityToken' is hidden. For more details, see https://aka.ms/IdentityModel/SecurityArtifactLogging.]'. See https://aka.ms/IDX10511 for details. Can anyone help in this? I have searched for this and there is one question on forge but it is very old and the forge must have got some changes since then.
Hi @Rishabh Tailor ,
That means your token is not following the right pattern or signature.
Please check with token originator, how they are forming this token because if your token is not valid or broken then you cannot use the forge component to validate it.
At least you should be able to validate your token using below link.
https://www.jwt.io/
Regards,
Manish Jawla
Have you tried verifying your token to the below url as well:
If not try that as well and check the response.
We usually use this url to validate the token first, before checking the same using forge component.
And this component is recently updated on 4th July.
Hi @Manish Jawla ,I have checked the token already on https://www.jwt.io/, it is not being validated there too.I checked the keyId and other things they are the same and is one of the keys we get from the Microsoft's Keys endpoint.
Does it mean that the generated token is not correct or something else?
Hi @Manish Jawla , thanks for you support.I figured it out, It was due to the audience/scope attribute which was being passed at the time of creation of token.
Your always welcome @Rishabh Tailor , happy to help you.