node-azure-ad-jwt icon indicating copy to clipboard operation
node-azure-ad-jwt copied to clipboard

Azure validation manager prefixes 'issuer' with 'https://sts.windows.net/'

Open gabheadz opened this issue 8 years ago • 3 comments

AAD issued me a JWT with issuer "https://login.microsoftonline.com/[tenant-id]/v2.0", and validation is failing because validate always expect this issuer 'https://sts.windows.net/[tentant-id]'. Would it be better if one can define whitch issuer to expect in the options parameter of 'verify = function(jwtString, options, callback)'.?

gabheadz avatar Jan 19 '18 12:01 gabheadz

This impacted me as well. I had to change the hard coded issuer to "https://login.microsoftonline.com/[tenant-id]/v2.0" as well. Can this be made a configurable option?

cwkummer avatar Mar 26 '18 18:03 cwkummer

This has broken this library for me too :(

benc-uk avatar Dec 23 '18 16:12 benc-uk

For my use case I needed https://login.microsoftonline.com. Rather than use specific urls, I decided a more sensible solution was to make the issuer and openIdConfig urls optional templates. Looks like this library is unmaintained to feel free to use my fork in case this never gets accepted..

MatthewTrout avatar Mar 20 '19 11:03 MatthewTrout