"The given JWT for client authentication is invalid" IRS API

Question

I get the following error, anyone got any ideas?

{

    "error_code": "ESRV306",

    "error_msg": {

        "error": "invalid client",

        "error_description": "The given JWT for client authentication is invalid."

    }

}

It is a post request with:

grant_type: urn:ietf:params:oauth:grant-type:jwt-bearer assertion: client_assertion_type:urn:ietf:params:oauth:client-assertion-type:jwt-bearer client_assertion:

both JWTs are valid, confirmed via jwt.io. Other claims included are:

iss,aud,exp (set to 15 minutes),iat(set to now), jti(random guid) and "kid" added in header

trying to get a bearer token back.

score 0 · Answer 1 · answered Aug 25 '23 at 20:59

0

User error, I was passing client_JWT as assertion and client_assertion as User_JWT, switching them around helped...duh..

answered Aug 25 '23 at 20:59

Skapoor

1

"The given JWT for client authentication is invalid" IRS API

1 Answers1