Unable to edit OTK Key in Oauth manager.
search cancel

Unable to edit OTK Key in Oauth manager.

book

Article ID: 385917

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

When adjusting a client key , there is a error message in the Oauth manager and the change is not saved.

It appears that the transformation of the JSON to XML from the “key_custom” to XML (with Apply JSON Transformation) in the Oauth manager policy  goes wrong because

the value (entered here via secret = JWT) contains a key “x5t#s256”.

Which is a invalid character for xml .

How can this key be edited 

 

Environment

OAuth 4.6.x 

Resolution

We have identified a workaround for this issue. make the below changes to oauth/manager/clients policy. This service policy is editable.

Add regex assertions as shown below:

  1. Change x5t#S256 with x5tHashS256 within policy logic before JSON Transformation
  2. Revert this before the update is saved into OTK DB. 

 

 

 

Note:

  1. The line numbers in the screenshots are only indicative since it depends on Oauth kit version 
  2. We will fix this in the product in future release

 

 

 

 

Powered by Wolken Software