gmkung
October 26, 2019, 3:52pm
1
I’m trying to use the Access Token Okta passed to my client to retrieve userInfo on the server side.
When sending the token to https://dev-552657.okta.com/oauth2/v1/userinfo , I get in the headers:
WWW-Authenticate →Bearer authorization_uri="http://dev-552657.okta.com/oauth2/v1/authorize", realm="http://dev-552657.okta.com", scope="openid", error="invalid_token", error_description="The access token is invalid.", resource="/oauth2/v1/userinfo"
When I manually validate the signature on jwt.io , it also shows an invalid signature.
However, the jwt-verifier module in Vue does accept this Access token, which is weird.
dragos
October 28, 2019, 12:00am
2
Hi @gmkung
Can you provide a sample payload that you are using to send the request to /oauth2/v1/userinfo?
Hello All,
Can anyone tell me the response to an invalid signature? I am also getting the same error for an access token. Any help would be appreciated.
Regards,
andrea
September 9, 2022, 6:58pm
4
Please create a new post so we can assist you there instead of in this old post. Taking a guess, my first thought is that you are trying to validate an access token issued by the Org Authorization Server, which is simply not possible. More details here: Signature Validation Failed on Access Token | Okta Help Center