Hi All,
Setup:
Kong deployed using terraform in openshift running as Ingress Controller in Kubernetes
JWT KongPlugin resource used to validate My Application per namespace
KongConsumer deployed per namespace
KongCredential deployed per namespace mapped to KongConsumer and configured to use HS256, Key and RSA Public Key supplied.
kind: Ingress
apiVersion: v1
metadata:
name: arc-config-ingress-demo
namespace: arc-config-demo
labels:
component: arcconfig
app.instance: arc-configuration-demo
app./name: arc-configuration
app/part-of: arc
annotations:
plugins: app-jwt
strip-path: ‘true’
spec:
ingressClassName: kong
apiVersion: v1
kind: KongPlugin
metadata:
name: app-jwt
namespace: arc-config-demo
config:
claims_to_verify:
- exp
- nbf
secret_is_base64: false
plugin: jwt
apiVersion: v1
kind: Secret
metadata:
name: app-user-jwt
namespace: arc-config-demo
type: Opaque
stringData:
kongCredType: jwt
key: ********-dbt..tv
algorithm: HS256
secret: ***==YXJjLWNvbmZpZw==
apiVersion: v1
kind: KongConsumer
metadata:
name: app-user
namespace: arc-config-demo
annotations:
ngress.class: kong
username: app-user
credentials:
- app-user-jwt
===================
while running the postman I am getting “message”:“no Route matched with those values”}’
When i am running from curl
curl -i **** -H “Host:” -H “Authorization:Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCIsImlzcyI6ImtleWNsb2FrLmFwcHMuZGVtbzIuaW50ZWdyYXRpb24tZGJ0LmFzY2VuZG9uLnR2In0.eyJuYmYiOjAsImJ1IjoiMjk1IiwiaWF0IjoxNjc2Mjc4NTQ0LCJleHAiOjE5NzU5NTE0MDB9.lBTqStkOFkUWx**”
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 31 100 31 0 0 31 0 0:00:01 --:–:-- 0:00:01 31HTTP/1.1 401 Unauthorized
Date: Mon, 13 Feb 2023 09:18:46 GMT
Content-Type: application/json; charset=utf-8
Connection: keep-alive
Content-Length: 31
X-Kong-Response-Latency: 1
Server: kong/3.1.1
{“message”:“Invalid signature”}
======
I m creating the key from Online JWT tool like below.