x5t value in JWT tokens is not correct as per the specifications

cbabey commented 5 months ago

Description

The x5t value generated by the APIM resident key manager in the JWT token due to an additional hexify step[1]. This hexify process is not in line with the specification[2].

Please refer to the product-is[1] issue for more details on this

[1] https://github.com/wso2-extensions/identity-inbound-auth-oauth/blob/v6.9.6/components/org.wso2.carbon.identity.oauth/src/main/java/org/wso2/carbon/identity/oauth2/util/OAuth2Util.java#L2978 [2] https://datatracker.ietf.org/doc/html/rfc7515#section-4.1.7

Steps to Reproduce

N/A

Affected Component

APIM

Version

4.2.0

Environment Details (with versions)

No response

Relevant Log Output

No response

Related Issues

No response

Suggested Labels

No response

AnuGayan commented 2 months ago

Fixed by https://github.com/wso2-extensions/identity-inbound-auth-oauth/pull/2400

RakhithaRR commented 1 month ago

Need to send this fix to the correct branch

wso2 / api-manager

x5t value in JWT tokens is not correct as per the specifications #2838

Description

Steps to Reproduce

Affected Component

Version

Environment Details (with versions)

Relevant Log Output

Related Issues

Suggested Labels