correct keys in .well-known/jwks.json #2612

killjoy2013 · 2023-02-15T09:22:37Z

killjoy2013
Feb 15, 2023

Tyring to activate jwt authentication on router 1.10.3

this is how I ceated my private & public keys;

openssl genrsa -out private.pem 3072
openssl rsa -in private.pem -pubout -out public.pem

I needed to create pkcs8 file from my private.pem like this;

openssl pkcs8 -in private.pem -topk8 -nocrypt -out pk8key.pem

here are my keys & token;

eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImtleUlkIn0.eyJyaWdodHMiOlsicmVtb3ZlQ2l0eSIsInJlbW92ZUNvdW50cnkiLCJjb3VudHJpZXMiLCJjaXRpZXMiXSwidXNlcm5hbWUiOiJhZG1pbiIsInN1YiI6MSwiaXNzIjoiaHR0cDovL2xvY2FsaG9zdDozMTAwIiwiaWF0IjoxNjc2NDQ3MTkyLCJleHAiOjMyNzgwNDQ3MTkyfQ.k4PwzgkxrERPxm6mh_kat7fpmK7pWP_BIHnKF5hMHe5mOUUJ0FKOxkwGSaVk06VKRhVSO6THcnleg0VvQ6ONzZX5NXRGhdMJYq6Ivoq0k9tNmAwsj54jupK-XWKk1zguGCthTealsLfDE8UYfuXGxo_P7utN9tJi5inf62NsDxFZH3yrbVoWFUluxwRoxuN0aT7GG_AeecNdkStmjVQOPofeI3p1rdZffyAlBEwdP4tfcsBAhzXf7jFLSCYlVWPY-Pgy9Lb4VEUF_W6v1GlwkdyQe8Z423Vzch0zXgR_mN3XEyo0YksoSMW0e3gGSs1luELEldgcHnho3nXRQM5SvDksRAIzeQcASqKirxiFruj0RHyNz09o604Q-IAVw2gwRB7CR-4VZxJBEcq9Yawc96yragvzJ0acrA0zhfxqx-Yox9BkLzG8P5VKdJ3vTMERZYoGnfP6hM-nU3uYCFAPweMFzFGOU7VdAyJWrRxRn9twMUM4YWddm3k-E-oOMqXz

this is how I create the token;

  createJwtOptions(): JwtModuleOptions {
    const { pk8Key, publicKey, expiration, algorithm, kid } = this.jwtConfig;
    return {
      publicKey,
      privateKey: pk8Key,
      signOptions: {
        keyid: kid,
        algorithm,
        expiresIn: expiration,
      },
    };
  }

token is verified on token.dev like this;

So far so good. However, I'm getting Invalid Signature on apollo studio

can this be any issue on .well-known/jwks.json ? this is how I produce it

 @Get('.well-known/jwks.json')
  getJwks() {
    const { kid, privateKey, algorithm } =
      this.configService.get<JwtConfig>('jwt');

    const key = rsaPemToJwk(
      privateKey,
      { use: 'sig', kid, alg: algorithm, type: 'JWT' },
      'public',
    );

    return {
      keys: [key],
    };
  }

it displays like this;

Can it be about the keys in .well-known/jwks.json ? What keys should I have here?

Thanks

garypen · 2023-02-16T12:34:39Z

garypen
Feb 16, 2023
Maintainer

Answered, I think, in related issue: #2619

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

correct keys in .well-known/jwks.json #2612

{{title}}

Replies: 1 comment

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Select a reply

correct keys in .well-known/jwks.json #2612

killjoy2013 Feb 15, 2023

Replies: 1 comment

garypen Feb 16, 2023 Maintainer

killjoy2013
Feb 15, 2023

garypen
Feb 16, 2023
Maintainer