Document toolboxDocument toolbox

Jwk

Owned by Frode Nilsen (Unlicensed)
Last updated: 14 Jan 2018Version comment
1 min read
URLhttps://<baseurl>/userinfo/jwk
Request methodGET
Client authenticationNone
Request parametersNone
Response elementsJSON structure according to standard.
ExampleSee below

Jwk is a standard endpoint that returns the public part of keys used for signing. The keys are later used for token signature validations.

Example

The following example shows a request / response pair for the jwk endpoint

Request / Response
GET /oidc/oauth/userinfo/jwk HTTP/1.1
Host: preprod.bankidapis.no
Connection: close
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.8
 
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Server: Microsoft-IIS/8.5
X-Powered-By: ARR/3.0
X-Powered-By: ASP.NET
Date: Tue, 23 May 2017 20:43:06 GMT
Connection: close
Content-Length: 417

{
    "keys": [
        {
            "e": "AQAB",
            "kid": "bankid-oauth",
            "kty": "RSA",
            "n": "khw6L8E9GwwTu5AUclpOM0MdzrKLLrmgiYViNWXKhJ6sfX5FHpGWVhz0NgI_nuHAobXRD3MBGLd7SLL0HIMK6LnhMP_kUsTsIzF2AGdPiy6mPrvCz1eaL6zPaoi3X7MLC2rEsqzW5k5jKPLMzJc2dgqa4DQEKeG81AnplquQosH7dcjz9ORZ0pVwTlt5Rfuyn1yLKEsqlKI3SCwMjqvZ-EVjoAV0xdIUfdMTpah5rZFtv-giKa_fI1NoKrdrLBtETxe4xqNzbSwkxBSX1yuNuCfVNjveKAuoPv1OETbHvqiym8dBFRr4jJ9GDDxzRF6uMQTtw1ipnTK0b30om9FLfw",
            "use": "sig"
        }
    ]
}