Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
[policy][jwt] do not accept JWT token with empty signature #1417
Currently if we have an JWT token with an empty signature, for example :
The APIM Gateway will let the consumer call pass. We MUST enforce the Policy JWT to check if the incoming JWT contains the signature part.