Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


Add a new idea Subscribe
Status Delivered
Workspace API Connect
Created by Guest
Created on Jan 17, 2019

RELATED IDEAS

kid not added to the header of a JWT token generated with a jwt-generate policy

The kid (key identifier) parameter that should optionally be added to the JOSE header of a JWT token, isn't instead added to a JWT token by using a jwt-generate policy and declaring the kid in the JWK used in the policy configuration. In other words, if the kid is added to the JWK, as dictated by RFC 7517 - JSON Web Key (JWK), then a jwt-generate policy using that JWK as Runtime variable to sign the JWT token is not able to generate a JWT token that has the mentioned kid in the JOSE header. So the request is to extend the current implementation of the jwt-generate policy so that if the kid is specified in the JWK, then it is added in the JOSE header of the generated JWT token.

Idea priority Medium
RFE ID 129092
RFE URL
RFE Product IBM API Connect
  • Guest
    Reply
    |     Aug 7, 2024

    This has been delivered with in DataPower 10.5.4 CD+ added support for a JWT generate action to add the value of the kid claim in the JWT for JWE and JWS.When you add a JWT generate action to an assembly, you can specify the value of the kid claim in the JWT for JWE and JWS. For more information, see Adding a JWT generate assembly action.

    Please upgrade to the latest version of API Connect and DataPower - at the time of this post API Connect v10.0.8 w/ DataPower v10.6 - https://www.ibm.com/support/pages/ibm-api-connect-support-lifecycle-policy

  • Guest
    Reply
    |     Jan 17, 2019

    The IBM API Connect product version is 5.0.8.4.iFix

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.