Page History
...
Element | Description | Default Value | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
<EnableTokenGeneration> | Set this value to true to enable JWT. Note that if you publish APIs before JWT is enabled, you have to republish them. | false | |||||||||||||
<SecurityContextHeader/> | The name of the HTTP header to which the JWT is attached. | X-JWT-Assertion | |||||||||||||
<ClaimsRetrieverImplClass/> | By default, the
By default, the following are encoded to the JWT:
In addition, you can also write your own class by extending the interface
| org.wso2.carbon.apimgt.impl.token.DefaultClaimsRetriever | |||||||||||||
<ConsumerDialectURI/> | The dialect URI under which the user's claims are be looked for. Only works with the default value of The JWT token contains all claims define in the
| http://wso2.org/claims | |||||||||||||
<SignatureAlgorithm/> | The signing algorithm used to sign the JWT. The general format of the JWT is This element can have only two values- the default value, which is SHA256WITHRSA or NONE. | SHA256WITHRSA |
Tip |
---|
You can use TCPMon or API Gateway debug logs to capture JWT token header withenduser details. To enable gateway DEBUG logs for wire messages,
|
Customizing the JWT generation
...