Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Reintroduce SecurityTokenHandler.ValidateToken()
See original GitHub issueThe SecurityTokenHandler base class doesn’t expose this precious method. Please consider bringing it back.
Issue Analytics
- State:
- Created 7 years ago
- Comments:16 (16 by maintainers)
Top Results From Across the Web
When is JWTSecurityTokenHandler.ValidateToken() ...
I am attempting to create a token validation method that returns true if a JWT token is valid based on the signature. I...
Read more >SecurityTokenHandler.ValidateToken(SecurityToken) ...
When overridden in a derived class, validates the specified security token. The token must be of the type processed by the derived class....
Read more >How to Create and Validate JWT Tokens in ASP.NET Core ...
This is a quick example of how to create and validate JWT tokens in ASP.NET Core 3.1 using the JwtSecurityTokenHandler class which is...
Read more >DarksideCookie - ASP.NET - RSSing.com
They inherit from SecurityTokenHandler, but they also implement ISecurityTokenValidator, ... In the ValidateToken() method, there is a bit more work to do.
Read more >JwtSecurityTokenHandler.ValidateToken Method
Reads and validates a 'JSON Web Token' (JWT) encoded as a JWS or JWE in Compact Serialized Format.
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
In the meantime,
SecurityTokenHandlerhas no validation method, which requires casting handler instances toISecurityTokenValidator… this doesn’t make much sense.RawDatawas originally envisioned to set the bootstrap context on the ClaimsIdentity so OnBehalfOfFlows would work. It is hard to reconcile that all the Claims in a hydrated token map to theRawData. There is an interesting flow where hydrating a token once makes sense, when multiple Identity Providers are involved. In this case you need the ‘iss’ to get the metadata (keys, issuer, …).