Closed
Solved
how using JWE to encrypt data before sending a reques to external API?
We are looking to integrate JSON Web Encryption (JWE) with our REST Connect APIs in Pega. Specifically, we need guidenace on how to use the OOTB JWT functions to encrypt and decrypt the requests and response from REST APIs
Appreciate on any advice.
***Edited by Moderator Marije to add Capability tags***
To see attachments, please log in.
Accepted Solution
Posted: 1 year ago
Updated: 1 year ago
Updated: 9 Jan 2025 10:32 EST
MOD
Pegasystems Inc.
GB
@LarryT73 "Pega uses the Nimbus library for both JSON Web Signature (JWS) and JSON Web Encryption (JWE). To integrate JSON Web Encryption (JWE) with your REST Connect APIs in Pega, you can create a processing JSON Web Token (JWT) profile. This profile will specify how Pega Platform validates and decrypts each JSON Web Token it receives. You need to configure cryptographic components in instances of an existing keystore, which Pega Platform will use to validate the token’s signature and decrypt the token when it receives it from an external source. The processing JWT profile data instance consists of claims validations, claims mappings, and a security configuration specifying signing, decryption, or a combination of both. The profile can also specify a token lifetime and timeout option.
⚠ This is a GenAI-powered tool. All generated answers require validation against the provided references.
CLSA Community Meetup: Secure your DX API & 8.6 Security update
Creating a processing JSON Web Token profile
Token profile data instance