Configuring a JSON Web Token Processor instance
The PingFederate security token services (STS) provides validation for JSON web tokens (JWTs).
Steps
-
Go to Authentication → Token Exchange → Token Processors.
-
On the Instance Configuration tab, enter the required information.
See the following table for information about each field.
JWT Token Processor instance field names and descriptions Field Description JWKS Endpoint URI
The URI of the JWKS endpoint. A set of JSON Web Keys (JWK) are downloaded from this endpoint and used for JWT signature verification.
Issuer
A unique identifier for the issuer of the JWT.
Expiry Tolerance
The amount of time, in seconds, to allow for clock skew between servers. Valid range is 0 to 3600.