Tíbó
Reputation: 1218
Generate token with RS256 and Jwts.builder().signWith() produces invalid signature
Using the JWT Java library and producing a token with the RS256 algorithm, I always get an invalid signature with the jwt.io debugger. Here is my example code, I tried to make it as simple as possible to start with my current project:
// Create a legitimate RSA public and private key pair:
KeyPair kp = RsaProvider.generateKeyPair();
PublicKey publicKey = kp.getPublic();
PrivateKey privateKey = kp.getPrivate();
String jwt = Jwts.builder().setSubject("Joe").signWith(SignatureAlgorithm.RS256, privateKey).compact();
This code is inspired from the test class here.
Any idea what I could be missing?
Upvotes: 0
Views: 6772
Answers (1)
João Angelo
Reputation: 57728
The jwt.io debugger expects that you provide the public key associated with the private key used to sign the token encoded in the Public Key file (PKCS#8) format.
Ensure that you specify it using exactly that format, an example follows:
-----BEGIN PUBLIC KEY-----
BASE64 DATA
-----END PUBLIC KEY-----
Upvotes: 2
Related Questions
- JWT signature does not match locally computed signature
- Why do I get SignatureVerificationException when trying to validate a JWT with PS256?
- Generate JWT token not valid - java
- Token signature invalid error
- Failing to create a RS256 jwt key using jsonwebtoken
- JJWT generated token has an invalid signature
- JWT invalid signature
- Token generated using JWTSigner.sign() saying invalid signature in jwt.io debugger
- Generated with Java JJWT signature fails at jwt.io debugger
- "Invalid algorithm specified" when signing with JwtSecurityTokenHandler.CreateToken