You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
So when that JWT is checked by Clerk authenticate request, there's no way to enforce "azp". (Removing the options entirely does allow the JWT to be validated.)
RequestState(status=<AuthStatus.SIGNED_OUT: 'signed-out'>, reason=<TokenVerificationErrorReason.TOKEN_INVALID_AUTHORIZED_PARTIES: ('token-invalid-authorized-parties', 'Authorized party claim (azp) does not match any of the authorized parties.')>, token=None, payload=None)
Please add the "azp" key by default or allow some way to get it, e.g. via setting the value in the JWT Template or passing the value as a parameter in the SDK calls for fetching JWTs.
The text was updated successfully, but these errors were encountered:
There's no "azp" field returned in the JWT when using the SDK to fetch a JWT. This happens for the default JWT and for JWT templates.
The docs call out that "azp" will be included automatically (see here):
And the JWT Template builder prevents adding "azp":
But when using the SDK is used to fetch a JWT for a session:
The decoded JWT value has no
azp
key:So when that JWT is checked by Clerk authenticate request, there's no way to enforce "azp". (Removing the
options
entirely does allow the JWT to be validated.)Result:
Please add the "azp" key by default or allow some way to get it, e.g. via setting the value in the JWT Template or passing the value as a parameter in the SDK calls for fetching JWTs.
The text was updated successfully, but these errors were encountered: