XDATA JWT Token Error : Key is too short (344bit), expected (512bit)

Freisinger_Arno · October 11, 2023, 8:44pm

I have create a jwt and it apears folowing error:Key is too short (344bit), expected (512bit)

curl -X 'GET'
'http://localhost:2001/afs/pps/ResourceService/GetHumans'
-H 'accept: application/json'
-H 'Authorization: Bearer eyJhbGciOiJIUzUxMiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJBRlMtU29mdHdhcmUiLCJpYXQiOjE2OTcwNTYzOTYsImV4cCI6MTY5NzA1OTk5NiwibmJmIjoxNjk3MDU2Mzk2LCJ1c2VyIjoiZEdWemRFQjBaWE4wTG1SbCIsInJvbGUiOiJjbVZoWkdWeUlIZHlhWFJsY2lCaFpHMXBiZyJ9.RgsbFP0XXKmATSMWGskCxihOEt8LDkIZLYI3iFGFPwEYYxVW8KjQl8IiGv6vd5EtxvceEA3M3TiWdiJB-WVacQ'

wlandgraf · October 12, 2023, 7:59pm

Can you please try to increase the size of your JWT secret? For security purposes, it rejects keys that are too short.

Alternatively, you can set SkipKeyValidation property of the JWT middleware to False, to avoid such check. But I wouldn't recommend it, unless you really need it.