JwtInvalidIssuerError: Missing Issuer. Expected:

I am using the

jwtVerify

jwtVerify

function and I am getting the error in the title.

I am passing in the following things, which are definitely not null:

issuerBaseUrl

issuerBaseUrl

in the first parameter, and then in the second parameter I pass an option that looks like this:

{
    issuerBaseUrl: config.issuerBaseUrl,
    secret: config.clientSecret!,
    clientId: config.clientId!,
    grantType: "AUTHORIZATION_CODE"
}

{
    issuerBaseUrl: config.issuerBaseUrl,
    secret: config.clientSecret!,
    clientId: config.clientId!,
    grantType: "AUTHORIZATION_CODE"
}

I still get this failedAssertion:

 failedAssertion: { actual: undefined, expected: [ 'MYKINDESITE.kinde.com' ] }

 failedAssertion: { actual: undefined, expected: [ 'MYKINDESITE.kinde.com' ] }

I am using the access token from the frontend, which it gets via a generic OIDC client. My tokens look like this:

{
  "aud": [],
  "iat": 1706383810,
  "jti": "5848e275-911a-4fcf-a7f0-dbf30a920fee",
  "scp": []
}

{
  "aud": [],
  "iat": 1706383810,
  "jti": "5848e275-911a-4fcf-a7f0-dbf30a920fee",
  "scp": []
}

I'm stuck and I think I'm confused. Am I using the wrong kind of token? Do I have something misconfigured somewhere?

Kinde•3y ago•

12 replies