PingFederate Server

Configuring a JWT Token Processor 1.2 instance

The PingFederate security token services (STS) provides validation for JSON web tokens (JWTs).

Steps

  1. Go to Authentication → Token Exchange → Token Processors.

  2. On the Instance Configuration tab, enter the required information.

    See the following table for information about each field.

    Table 1. JWT Token Processor instance field names and descriptions
    Field Description

    JWKS Endpoint URI

    The URI of the JWKS endpoint. A set of JSON Web Keys (JWK) are downloaded from this endpoint and used for JWT signature verification.

    Issuer

    A unique identifier for the issuer of the JWT.

    Expiry Tolerance

    The amount of time, in seconds, to allow for clock skew between servers. Valid range is 0 to 3600.