JsonWebToken - SymmetricKey and Audience

Category: azure mobile

Question

Leandro Tuttini on Thu, 14 Aug 2014 15:24:30


Hi

I am using JsonWebToken implemented from

 JsonWebToken DelegatingHandler for WebAPI

to send social authentication to web api service configured in mobile service

but I don't understand what I should put in Audience and SymmetricKey

Using Auth0 in ASP.NET Web API

where I can get Audience and SymmetricKey ?

regards


Leandro Tuttini

Blog
MVP Profile
Buenos Aires
Argentina

Replies

Nagamalar Nagarajan on Fri, 15 Aug 2014 11:53:41


Hi Leandro,

Not sure if you are looking for this, however, you could check this link:

http://msdn.microsoft.com/en-us/library/hh674475.aspx

If not then I'm afraid you would have to check with Auth0 as this is not a part of Mobile Services.

Regards,
Malar.

Leandro Tuttini on Fri, 15 Aug 2014 12:55:41


Hi, Nagamalar

thanks for your answer

when I configure the JWT in ASP.NET Web Api I need to write

config.MessageHandlers.Add(new JsonWebTokenValidationHandler()
{
    Audience = "YOUR_CLIENT_ID",  // client id
    SymmetricKey = "YOUR_CLIENT_SECRET"   // client secret
});

in WebApiConfig.cs to enable the validation

but where I can get the values for Audience and SymmetricKey ? Are values from Azure configuration ?

regards

CarlosFigueira on Fri, 15 Aug 2014 17:47:39


The symmetric key is the value of the master key in your mobile service. You can find it in the portal, in either the quickstart or the dashboard tabs.

The audience should be the name of the mobile service, which is the site to which the JWT is valid. However, for legacy purposes, you can also use the name of the authentication provider (Facebook, MicrosoftAccount, etc.) and it will be accepted by the mobile service runtime.