I’m new to Okta. I’m demoing the Java Servlet example and am getting the following error when my Servlet Filter calls out to Okta. This is using a token generated by the oidcdebugger.com app.
Expected iss claim to be: https://dev-999999999.okta.com/oauth2/default, but was: https://dev-99999999.okta.com.
I noticed in the admin panel that the App I created has the https://dev-99999999.okta.com listed under issuer. This is showing up in the iss field of the JWT.
In my Servlet Filter config, I have the okta.oauth2.issuer param set to https://dev-999999999.okta.com/oauth2/default.
I get a different error if I set the init param to https://dev-99999999.okta.com.
A signing key must be specified if the specified JWT is digitally signed.