3

I'm trying to receive a JWT access_token from WSO2 Identity Server when logging in with password grant_type. But I can't find any way to configure this. When I sign in I get a guid as access_token.

I found this, but this is the way to get the access_token guid when you have a JWT: https://docs.wso2.com/display/ISCONNECTORS/Configuring+JWT+Grant+Type

Also I enable JWT Token generation using this tutorial, but I'm still receiving the guid: https://docs.wso2.com/display/IS510/JWT+Token+Generation

When I set true in identity.xml I get a base64 hashed access_token, but this is not in JWT format.

Has anyone figured this out?

Community
  • 1
  • 1
John Tyrrell
  • 77
  • 4

2 Answers2

0

You can use OpenID connect to get a JWT. [1] shows how to configure OIDC in Identity Server. I think you already have done that. So try sending scope=openid along with the token request.

Also, check [2] for a known bug and workaround related to OIDC in Identity Server 5.2.0

[1] https://docs.wso2.com/pages/viewpage.action?pageId=50514076

[2] WSO2 IS: OpenID Connect custom claims in 5.2.0?

Community
  • 1
  • 1
farasath
  • 2,961
  • 2
  • 15
  • 16
  • I don't think you understand the question. What you are referring to is the id_token, which already is a JWT. What the John is referring to is the access_token, which right now is a UUID. I have the same question as well. – chrisdrobison Nov 03 '16 at 23:10
  • so what you want is something like an access_token which is self descriptive right? So that you can use the meta data without introspecting it every time from an endpoint. – farasath Nov 04 '16 at 08:30
  • 1
    Yes, that is what we want. – chrisdrobison Nov 07 '16 at 22:13
0

you may want to follow this blog to generate JWT access token with WSO2 IS

also, you might want to follow this link to push the database schema changes into effect

Community
  • 1
  • 1
George Wang
  • 765
  • 2
  • 13
  • 28