You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Very straightforward code works perfectly with Okta, but with Azure all sorts of problems ensue. Need to override aud to make Azure happy, which messes up Okta. But even then, Azure insists it cannot find the matching certificate. According to their docs [1] they want the x5t value in the JWT header. Is there a way, using this library, to inject that value? Simply overriding kid does not work, the result is the same; simply adding x5t to the jwk doesn't make a difference either.
Has anyone successfully used this library to authenticate a user with Azure AD using OIDC and client certificates? All I really want is to provide a method that is more secure than "shared secrets." It doesn't have to be private_key_jwt, as long as it works.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Very straightforward code works perfectly with Okta, but with Azure all sorts of problems ensue. Need to override
audto make Azure happy, which messes up Okta. But even then, Azure insists it cannot find the matching certificate. According to their docs [1] they want thex5tvalue in the JWT header. Is there a way, using this library, to inject that value? Simply overridingkiddoes not work, the result is the same; simply addingx5tto the jwk doesn't make a difference either.Has anyone successfully used this library to authenticate a user with Azure AD using OIDC and client certificates? All I really want is to provide a method that is more secure than "shared secrets." It doesn't have to be
private_key_jwt, as long as it works.[1] https://learn.microsoft.com/en-us/entra/identity-platform/certificate-credentials
Beta Was this translation helpful? Give feedback.
All reactions