"invalid_assertion" when running the postman collection for "Get Tokens" under the "AuthCode Flow with OTP login"

1

Hello Team,

I have esignet setup locally integrated with the mock-id system.

When running the postman collection for “AuthCode Flow with OTP login”, I get an “invalid_assertion” error at the “Get Tokens” stage.

This also happens when I setup the mock relying party service integrated with my esignet instance as well.

Please find copy of the errors seen on the esignet container logs at the point of this request in the file below:

2

As per the log “aud” claim in the client_assertion is not correct.

com.nimbusds.jwt.proc.BadJWTException: JWT \"aud\" claim has value [http://172.29.108.111:8088/v1/esignet/oauth/token] but should be [http://localhost:8088/v1/esignet/oauth/v2/token]

  1. Cross check the audience value passed in the postman prescript (collection variable).
  2. If its required to use IP address, then override “mosip.esignet.domain.url” in docker-compose. By default in local profile it is set to esignet/esignet-service/src/main/resources/application-local.properties at release-1.5.x · mosip/esignet · GitHub

Note: when passing this as env in docker-compose, it is converted to all uppercase with underscore separator → MOSIP_ESIGNET_DOMAIN_URL

thanks & regards
MOSIP

3

Thank you for the reply.

The issues are resolved now.

4

For any more queries please feel free to reach out to us.

Best Regards,
Team MOSIP