Qlik Cloud: Example of JWT token format

Damien_Villaret · Apr 2, 2024 3:59:18 AM

In order to be able to authenticate through JWT authentication in Qlik Cloud, the JWT must be formatted appropriately.

This knowledge article exposes an example of JWT token format.

For instructions on how to set JWT authentication in Qlik Cloud, please see Implement JWT Authorization (Qlik.dev).

Resolution

JWT token format to be followed:

Header:
{
  "typ": "JWT",
  "alg": "RS256",
  "kid": "2xxxxxxxxb"
}

Payload:
{
  "jti": 17111234567, 
  "iss": "xxxx.eu.qlikcloud.com",
  "aud": "qlik.api/login/jwt-session",
  "sub": "user1",
  "subType": "user",
  "iat": 1711610797,
  "nbf": 1711610797,
  "exp": 1711614397,
  "name": "John Doe",
  "email": "xxxxxxxx@xxxxxxxx.com",
  "email_verified": true
}

If you are unsure of the format, paste your JWT token in the debugger tool on https://jwt.io to see the content.

Environments:

Qlik Cloud

Metin-dev · ‎2024-04-03

How can i fix this

{
"errors": [
{
"title": "Invalid token request",
"detail": "JWT_LOGIN_VALIDATIONS Missing required claim: nbf",
"code": "INTERNAL-TOKEN-1",
"status": "400"
}
],
"traceId": "d4f3256ebd3ca1e7c7d71eadd70c4386"
}

Damien_Villaret · ‎2024-04-04

@Metin-dev You're missing the nbf (not before) claim which indicates the time from when the JWT token can be used.

Qlik Cloud: Example of JWT token format