Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Topics created by agbichpuriya

A

Unsolved Can anyone access "private key" present in JWT signature when token is signed using RSA?

Q&A
• • • agbichpuriya

2

0
Votes

2
Posts

370
Views

D

@agbichpuriya

The private RSA key should not be present in your JWT. The public key should not be present either, but a kid should be present in the header identifying the public/private keypair that was used to sign the JWT.

Please share a sample JWT with this issue.

Topics created by agbichpuriya

Unsolved Can anyone access "private key" present in JWT signature when token is signed using RSA?