How to validate a token received from another API?

[phanisrinath]

Hello Team,

I have a python api that is meant to receive a request from another api. But to secure my api i would need to validate an incoming JWT. Is there a straight forward way of doing this instead of writing our own code? (I am sure there is a way to validate an incoming JWT in C# but couldnt find anything specific for python). The only resource that i have found on this is the following link. https://aboutsimon.com/blog/2017/12/05/Azure-ActiveDirectory-JWT-Token-Validation-With-Python.html

Any help in this regard would be of a great help

Regards,
Srinath

[rayluo]

ADAL Python is designed to be a client-side library for acquiring (and caching) tokens. Validation of a token is out of the scope of this ADAL Python library. So I'll mark this as both Wontfix and Enhancement - a rare combination indeed - for now. We will revisit this in future, possibly as a different project in its own.

[tmpapageorgiou]

There is a pending question create by me at stack overflow asking exactly the same. I have tried the same solution defined in the blog post mentioned by @rayluo, but I did not succeed so far. If anybody succeed on validate JWT token, I would love to chat with you.

[phanisrinath]

As a matter of fact i was able to do it. but had to write my own code based on the link had mentioned earlier in the post. Do mail me in case you need to any help

[rayluo]

Closing this issue, as ADAL Python already reaches its end-of-life. Please subscribe the same token validation topic in MSAL Python and another one.