Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Qlik Open Lakehouse is Now Generally Available! Discover the key highlights and partner resources here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
milesokeefe
Partner - Contributor
Partner - Contributor
‎2025-05-15 10:20 AM

JWT with multiple aud values causes authentication error

I have configured a virtual proxy in my Qlik Sense Enterprise for Windows instance with JWT authentication.

 

The JWT I am providing in the Authorization header is generated by Auth0, and as such has two values for audience:

 

"aud": [
  "https://myapp.com",
  "https://anna-development.auth0.com/userinfo"
],

 

 

I have the expected aud value in the virtual proxy set to "https://myapp.com".

 

When attempting to authenticate with this JWT, Qlik logs this error:

Audit.Proxy.Proxy.SessionEstablishment.Authentication.JWT.JwtAuthenticationHandler [...] JWT contains aud claim with invalid value: System.Collections.ArrayList [..]

 

An array is a valid value for the aud field in a JWT.

Qlik's documentation even references this here (note that recipients is plural):

  • Audience (aud😞 Identifies the recipients of the token.
Labels (1)
Labels
216 Views
0 Replies