Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Streamlining user types in Qlik Cloud capacity-based subscriptions: Read the Details
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
justindallasverizon
Contributor III
Contributor III
‎2025-07-21 07:51 AM

JWT Token-Claims Inactive User But Still Works

Hello Folks,

We have an app that uses a JWT token.  The payload is like this:

{
  "userId": "000InactiveUserId",
  "userDirectory": "MyDomain"
}

The user id references an inactive user, but the token still works.  What is going on?  Should access be denied? 

 

Any help is greatly appreciated.

 

Labels (2)
Labels
265 Views
1 Solution

Accepted Solutions
David_Friend
Support
Support
‎2025-08-04 03:05 PM

As long as the user was active when the token was created then the token will continue to work.

View solution in original post

183 Views
0 Likes
2 Replies
David_Friend
Support
Support
‎2025-07-30 08:49 AM

@Sebastian_Linser / @Mike_Dickson / @Nick_Asilo any thoughts?

217 Views
0 Likes
David_Friend
Support
Support
‎2025-08-04 03:05 PM

As long as the user was active when the token was created then the token will continue to work.

184 Views
0 Likes