Ways to decode a JWT

Certified Lead Developer

Hi all, 

I have seen that the decodeJWT function of JWT Tools plug-in returns the decoded token but only if the signature is valid, otherwise it returns null. This function needs jwks url to retrieve the proper public key and validate the given token. 

Does anyone know if there is a way to decode a JWT without validating the signature? It is possible to decode a JWT with a private key stored in scs? Is there any other plug-in to create and validate JWTs?

Thanks in advance. 

  Discussion posts and replies are publicly visible

Parents Reply Children
No Data