This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, go to https://wso2.com/documentation/.
JWT Secured Authorization Response Mode for OAuth 2.0
WSO2 Open Banking adheres to the JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) specification, which defines a new JWT-based mode to encode OAuth authorization responses.
This is only available as a WSO2 Update from WSO2 Open Banking Identity Server 2.0.0.258 onwards. For more information on updating WSO2 Open Banking, see Updating WSO2 Products.
Enabling JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) for Open Banking
By default, JARM response modes are not enabled in WSO2 Open Banking. To enable JARM, follow the steps below:
- Open the
<WSO2_OB_IAM_HOME>/repository/conf/deployment.tomlfile. Add the following configurations:
[oauth.jarm] jarm_response_jwt_validity = 7200 [[oauth.response_mode]] name = "jwt" class = "org.wso2.carbon.identity.oauth2.responsemode.provider.jarm.impl.JwtResponseModeProvider" [[oauth.response_mode]] name = "query.jwt" class = "org.wso2.carbon.identity.oauth2.responsemode.provider.jarm.impl.QueryJwtResponseModeProvider" [[oauth.response_mode]] name = "fragment.jwt" class = "org.wso2.carbon.identity.oauth2.responsemode.provider.jarm.impl.FragmentJwtResponseModeProvider" [[oauth.response_mode]] name = "form_post.jwt" class = "org.wso2.carbon.identity.oauth2.responsemode.provider.jarm.impl.FormPostJwtResponseModeProvider"
For more information on JARM, see the JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) documentation.