Generate and sign a JWT in Hybrid Apigee

praviningawale · March 15, 2022, 7:02am

We are using access token from okta and to access okta resource we need to generate and sign a JWT

For testing purpose okta documentation suggest to use below tool to get JWT. In this we enter the private key and Payload to get JWT

https://www.jsonwebtoken.dev/

How can we achieve it in Apigee ?

The documentation also suggest to use below code to get JWT, but this code does not work in apigee

PrivateKey privateKey = // Load an RSA private key from configuration
Instant now = Instant.now();

String jwt = Jwts.builder()
        .setAudience("https://${yourOktaDomain}/oauth2/default/v1/token")
        .setIssuedAt(Date.from(now))
        .setExpiration(Date.from(now.plus(5L, ChronoUnit.MINUTES)))
        .setIssuer(clientId)
        .setSubject(clientId)
        .setId(UUID.randomUUID().toString())
        .signWith(privateKey)
        .compact();

API-Evangelist · March 15, 2022, 8:50pm

Did you get a chance to take a look at below & use apigee provided policies which should be simple to configure & generate as per your needs.

https://docs.apigee.com/api-platform/reference/policies/jwt-policies-overview

if you are interested in java callout (https://docs.apigee.com/api-platform/samples/cookbook/how-create-java-callout) policy you want to take a look at https://github.com/apigee/iloveapis2015-jwt-jwe-jws and make changes.

praviningawale · March 16, 2022, 6:55am

This is now sorted

We have used Generate JWT policy
Okta has imported Public/private key provided by us.
We have used the private key to generate JWT

Topic		Replies	Views
Support for JWT token? Apigee api-runtime	11	21	November 17, 2016
JWT Policy Apigee api-runtime	7	1	November 15, 2017
Java Callout to generate or validate JWTs with signing and/or encryption Knowledge Hub apigee	7	10	April 8, 2019

Generate and sign a JWT in Hybrid Apigee

AI Suggested topics