Navigation

    FusionAuth
    • Login
    • Search
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs

    My JWKS are always empty

    Q&A
    api jwks keys
    1
    2
    743
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • dan
      dan last edited by dan

      I have the default keys set up, but when I am using the API here: https://fusionauth.io/docs/v1/tech/oauth/endpoints#json-web-key-set-jwks

      And retrieving from

      https://hostname/.well-known/jwks.json

      I see this; not sure what I am doing that is wrong.

      { "keys" : [ ] }
      

      I also tried using tenantid and with Authorization header.

      Pulled over from https://github.com/FusionAuth/fusionauth-issues/issues/744

      --
      FusionAuth - Auth for devs, built by devs.
      https://fusionauth.io

      1 Reply Last reply Reply Quote 0
      • dan
        dan last edited by dan

        Symmetric keys are not returned on the JWKS endpoint, as they don't have a public key. Per the docs this api:

        returns public keys generated by FusionAuth, used to cryptographically verify JWTs using the JSON Web Key format

        If you create an RSA or EC key which is an asymmetric key pair - the public key will be returned on the JWKS endpoint. If you don’t have any key pairs configured , it will be empty. Out of the box, you’ll only have one HMAC key which we don’t publish in JWKS.

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        1 Reply Last reply Reply Quote 2
        • First post
          Last post