Forum Discussion

Nimbostratus

Mar 04, 2021

JWT - Redirect URI - Encoded

Hello everyone,

I'm new with F5 products.

For a client I have to implement an OpenID Connect system, at the end of the authentication the user is redirect to an app with the id_token :

https://ip_adresse_of_server/openid-connect?token=*************

Inside the access profile, I changed the endings with Redirect and put this URL :

https://ip_address_of_server/openid-connect/?token=%{session.oauth.client.last.id_token}

But when the application get the token it looks like the token is encoded, the id_token begin with $CK$$ and ends with == ; On the server-side (the app (not managed by me)) the error is :

{"errorCode":-1,"errorMessage":"Invalid Compact JWS"}

What is weird is that inside the logs of F5 I can see the id_token and use it with jwt.io to decode it, and verify the signature (with the cert).

Thank you in advance !

application delivery

BIG-IP

BIG-IP Access Policy Manager (APM)

jwt openid jws url encode

No RepliesBe the first to reply

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

JWT - Redirect URI - Encoded

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

JWT authorization with NGINX Ingress Controller

POC: Validate JWT with iRule

iRuleLX Solution for OAUTH JWT authenticated Salesforce Query

POC: Create and sign a JWT with iRule

JSON Web Token (JWT) Parser

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS