fiware-idm icon indicating copy to clipboard operation
fiware-idm copied to clipboard

at_hash value of JWT token is incorrectly calculated

Open a-mroz opened this issue 3 years ago • 2 comments

Apparently, at_hash value for JWT token is improperly calculated – instead of using base64url it's using base64 function. I encountered this issue when I tried to integrate OIDC using express-openid-connect library and openid-client – a certified library for node.js.

Please see the details here: https://github.com/auth0/express-openid-connect/issues/382

I re-checked it using fiware/idm:latest docker image – the problem still persists.

a-mroz avatar Aug 23 '22 04:08 a-mroz

The issue seems to be in here: https://github.com/ging/node-oauth2-server/blob/b6891e6b524fedae9c99b8a661f4ae9d87eea224/lib/utils/token-util.js#L39

a-mroz avatar Mar 29 '23 18:03 a-mroz