FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login

    My JWKS are always empty

    Scheduled Pinned Locked Moved
    Q&A
    api jwks keys
    1
    2
    1.8k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • danD
      dan
      last edited by dan

      I have the default keys set up, but when I am using the API here: https://fusionauth.io/docs/v1/tech/oauth/endpoints#json-web-key-set-jwks

      And retrieving from

      https://hostname/.well-known/jwks.json

      I see this; not sure what I am doing that is wrong.

      { "keys" : [ ] }

      I also tried using tenantid and with Authorization header.

      Pulled over from https://github.com/FusionAuth/fusionauth-issues/issues/744

      --
      FusionAuth - Auth for devs, built by devs.
      https://fusionauth.io

      1 Reply Last reply Reply Quote 0
      • danD
        dan
        last edited by dan

        Symmetric keys are not returned on the JWKS endpoint, as they don't have a public key. Per the docs this api:

        returns public keys generated by FusionAuth, used to cryptographically verify JWTs using the JSON Web Key format

        If you create an RSA or EC key which is an asymmetric key pair - the public key will be returned on the JWKS endpoint. If you don’t have any key pairs configured , it will be empty. Out of the box, you’ll only have one HMAC key which we don’t publish in JWKS.

        --
        FusionAuth - Auth for devs, built by devs.
        https://fusionauth.io

        1 Reply Last reply Reply Quote 2
        • First post
          Last post

        Looks like your connection to FusionAuth Forum was lost, please wait while we try to reconnect.