Skip to content

Instantly share code, notes, and snippets.

@noriyukitakei

noriyukitakei/policy.xml

Created August 3, 2018 12:16
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save noriyukitakei/b1375c45d6804a89b7fc1a052702e658 to your computer and use it in GitHub Desktop.
Save noriyukitakei/b1375c45d6804a89b7fc1a052702e658 to your computer and use it in GitHub Desktop.
Download ZIP
AzureのAPI Gateway(API Management)を用いてOpenID Connect Providerより発行されたJWTを検証
Raw
policy.xml
<validate-jwt header-name="Authorization" failed-validation-httpcode="401" failed-validation-error-message="Unauthorized" require-expiration-time="true" require-scheme="Bearer" require-signed-tokens="true" clock-skew="0">
<openid-config url="https://auth.login.yahoo.co.jp/yconnect/v2/.well-known/openid-configuration" />
<issuer-signing-keys>
<!-- 先程のYahooの設定画面で取得したシークレットをBase64したもの -->
<key>XXXXXX</key>
</issuer-signing-keys>
<audiences>
<!-- 先程のYahooの設定画面で取得したClient ID -->
<audience>XXXXXX</audience>
</audiences>
<issuers>
<issuer>https://auth.login.yahoo.co.jp/yconnect/v2</issuer>
</issuers>
</validate-jwt>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment