Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Vijayakumar Reddy (VjayaKumar_Coforge)
Incessant Technologies PVT Ltd

Incessant Technologies PVT Ltd
GB
VjayaKumar_Coforge Member since 2018 6 posts
Incessant Technologies PVT Ltd
Posted: Aug 3, 2021
Last activity: Aug 5, 2021
Posted: 3 Aug 2021 10:50 EDT
Last activity: 5 Aug 2021 5:54 EDT
Closed

JWT Claims Inbound Mapping

We have a requirement to validate the JWT token generated by External System in Pega, to implement this we have configured below rules.

  1. Created the token profile.
  2. Created the Custom Activity which is calling pxProcessJWT for JWT validation. Token profile and the JWT token is being passed as parameters to pxProcessJWT.
  3. Configured the Custom Claims mapping.

Token validation is working fine but we are facing issue with claim mapping where the array(from JWT payload) is not being mapped to clipboard property. We tried mapping valuelist and Pagelist but nothing is getting mapped. 

Also the JWT payload is not getting mapped

Appreciate any suggestion on this. Thanks.

 

 

 

 

***Edited by Moderator: Pooja Gadige to add platform capability tag***
To see attachments, please log in.
Pega Platform 8.6.1
Pega Cloud
Security
Insurance
Lead System Architect

Posted: 3 years ago
Posted: 3 Aug 2021 11:59 EDT
Kalinga Rout (KALINGAROUT)
Maantic
Lead Architect
Maantic
IN

@VjayaKumar_Coforge  - If it is an array then it is difficult to map it using the token profile. Another approach will be to pass a property reference in the Param.payloadJSONLocation while calling pxProcessJWT. Once JWT is processed the referenced property will contain the JSON string which can then be parsed using DT or function

To see attachments, please log in.
Posted: 3 years ago
Posted: 3 Aug 2021 12:59 EDT
Vijayakumar Reddy (VjayaKumar_Coforge)
Incessant Technologies PVT Ltd

Incessant Technologies PVT Ltd
GB

@KALINGAROUT  - Thanks for your quick reply,

I tried the approach you mentioned , which is not working (Logged the referenced payload property after pxProcessJWT execution which is showing empty. 

To see attachments, please log in.
Posted: 3 years ago
Updated: 3 years ago
Posted: 5 Aug 2021 5:50 EDT
Updated: 5 Aug 2021 5:54 EDT
Vijayakumar Reddy (VjayaKumar_Coforge)
Incessant Technologies PVT Ltd

Incessant Technologies PVT Ltd
GB

@KALINGAROUT - we can use the below engine api which is an alternative to pxProcessJWT activity. processJSONWebTokenAndGetPayload function validates the token and then returns the payload attributes in the form of Map. Below is the code snippet for the JWT validation and the fetching the attributes from the token payload.

    jwtPayLoadAttributes = ((PegaAPI)tools).getJWTUtils().processJSONWebTokenAndGetPayload(requestAuthorizationHeader,tokenProfile);              myStepPage.putString("pyStatusMessage","Sucess");        if(jwtPayLoadAttributes!= null){     net.minidev.json.JSONArray jArray=(net.minidev.json.JSONArray)jwtPayLoadAttributes.get("roles");     Roles = jArray.toString();      //oLog.debug("Roles Attribute -- :"+Roles);   }  

 

I have attached the dummy jwt token for your testing.

To see attachments, please log in.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice