JWT Bearer flow is still successful when IDP (Identity Provider)'s status is inactive
search cancel

JWT Bearer flow is still successful when IDP (Identity Provider)'s status is inactive

book

Article ID: 276830

calendar_today

Updated On:

Products

VIP Authentication Hub

Issue/Introduction

Sending JWT Bearer flow request is still successful getting Access/Identity token in VIP AuthHub 2.1.5, although IDP (Identity Provider)'s status is inactive.

Environment

VIP AuthHub 2.1.5

Resolution

This issue has been rectified in VIP AuthHub 2.2 version onward.

When IDP (Identity Provider)'s status is inactive, the response of JWT Bearer flow request will be "Invalid Assertion"

{
    "clientTxnid": null,
    "error": "invalid_request",
    "error_description": "Invalid assertion"
}

Upgrade to VIP AuthHub 2.2 version or later to address this issue.

Powered by Wolken Software