Validates a JWT on requests (signature via JWKS, required exp/sub) and exposes claims in exchange properties ("jwt").

jwtAuth:
    expectedAud: my-audience
    expectedTid: 67c859d3-0cd4-4a99-86db-088bed1a9601
    jwks: {}

jwtAuth:
    expectedAud: my-audience
    expectedTid: 67c859d3-0cd4-4a99-86db-088bed1a9601
    jwks: {}

Syntax

jwtAuth:
  '$ref': <string>
  expectedAud: <string>
  expectedTid: <string>
  headerJwtRetriever: {}
  jwks: {}

jwtAuth:
  '$ref': <string>
  expectedAud: <string>
  expectedTid: <string>
  headerJwtRetriever: {}
  jwks: {}

Attributes

Name

Required

Default

Description

Examples

$ref

false

Reference a component defined under components.

expectedAud

false

Expected audience ('aud') value of the token.

Use "any!!" to allow any audience value. This is strongly discouraged.

expectedTid

false

not set

Expected tenant ID ('tid') value of the token.

67c869d3-0cd4-4a99-86db-088bed1a9601

Element	Cardinality	Description
headerJwtRetriever	0..1
jwks	0..1