You can now add public keys for validation of JSON web tokens.


  1. In the admin UI Configure Manually section, click Select.
  2. Under Advanced Settings, select the JWT Settings gearbox icon.
  3. In the JWT Settings window, click Add.
  4. In the Account Settings window, enter the following information:
    Option Default and Description
    Name A name to identify this setting for validation.
    Issuer The JWT issuer values as specificed in the issuer claim in the incoming token to be validated.
    Dynamic Public key URL

    Enter the URL for dynamically fetching public key.

    Public key URL thumbprints Enter the list of public key URL thumbprints. If you do not provide a list of thumbprints, ensure that the server certificates are issued by a trusted CA. Enter the hexadecimal thumbprint digits. For example, sha1= C3 89 A2 19 DC 7A 48 2B 85 1C 81 EC 5E 8F 6A 3C 33 F2 95 C3.
    Trusted Certificates

    Click '+' to select a certificate in PEM format and add to the trust store. Click "-" to remove a certificate from the trust store. By default, the alias name is the filename of the PEM certificate. Edit the alias text box to provide a different name.

    Public key refresh interval

    The time interval in seconds at which the public key would be fetched from URL periodically.

    Static Public Keys Click '+' to select and add a public key of your certificate to use for JWT artifact validation. The file must be in PEM format.
  5. Click Save.


The details of the parameters are listed under JWT Settings.