Sample SALT JWT Configuration File

1.1.5.3.2 Sample SALT JWT Configuration File

Following is an example of the JWT configuration file (saltjwt.config), which displays the structure and relevant parameters

JWT_AUD_CLAIM                     https://abc.oraclecloud.com,  https://xyz.oraclecloud.com
JWT_ISS_CLAIM                     https://identity.oraclecloud.com/
JWT_KEY_USE_HEADER                SIGNING_KEY
JWT_HEADER_TYPE                   JWT
JWT_JTI_REPLAY_DETECTION          ENABLE
JWT_INSECURE_ALGO                 HS256,HS384,RS512
JWT_ROLE_CLAIM                    admin
JWT_ROLE_CLAIM_NAME               allow_roles
JWT_PERMISSION_CLAIM              call,rest
JWT_PERMISSION_CLAIM_NAME         permission
JWT_SCOPE_CLAIM                   urn:opc:idm:t.digitalid.abc, abc.com
JWT_ORIGIN_CLAIM                  https://oracle.com, https://abc.com
JWT_ERROR_MAPPING_FILE            <path_to_jwt_error_file>/rulejwt.json

Each of the above parameter is optional. If a parameter is not specified in the SALT JWT configuration file, then the validation for that parameter is not performed.

Syntax

<JWT_OPTION> <Value>

JWT_OPTION (key) is a specific keyword such as, JWT_AUD_CLAIM, JWT_ISS_CLAIM
Value is the corresponding value for the JWT_OPTION
JWT_OPTION cannot exceed 255 bytes, and its corresponding value should be < 4095 bytes.
When setting JWT_OPTION, ensure that values are specified without double quotes. For example, if the intended values are "User Administrator","Global Viewer", then you need to specify it as User Administrator,Global Viewer.

Note:
Double quotes are not supported for the Value fields and must be removed.

Parent topic: Configuring JWT Authentication and Customizing Error Messages