Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

at_hash value of JWT token is incorrectly calculated #290

Open
a-mroz opened this issue Aug 23, 2022 · 2 comments
Open

at_hash value of JWT token is incorrectly calculated #290

a-mroz opened this issue Aug 23, 2022 · 2 comments

Comments

@a-mroz
Copy link

a-mroz commented Aug 23, 2022
edited
Loading

Apparently, at_hash value for JWT token is improperly calculated – instead of using base64url it's using base64 function. I encountered this issue when I tried to integrate OIDC using express-openid-connect library and openid-client – a certified library for node.js.

Please see the details here: auth0/express-openid-connect#382

I re-checked it using fiware/idm:latest docker image – the problem still persists.
@a-mroz a-mroz changed the title at_hash value is improperly calculated at_hash value of JWT token is improperly calculated Nov 8, 2022
@a-mroz a-mroz changed the title at_hash value of JWT token is improperly calculated at_hash value of JWT token is incorrectly calculated Nov 8, 2022
@a-mroz
Copy link
Author

a-mroz commented Mar 29, 2023

The issue seems to be in here: https://github.com/ging/node-oauth2-server/blob/b6891e6b524fedae9c99b8a661f4ae9d87eea224/lib/utils/token-util.js#L39

@bgramaje
Copy link

bgramaje commented Nov 8, 2024

Any comment on this? I cant connect towards Keyorck using Nextjs + next-auth.

Any workaround to solve the problem?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@a-mroz @bgramaje