Configure a token signer to enable secure JWT-based authentication for tokenizer service integration. This task involves creating an OAuth entity profile with JWT Bearer grant type, setting up OAuth credentials, and
establishing a connection alias that links to your tokenizer service endpoint.
Antes de Iniciar
Role required: admin
Complete set up for context-aware authorization in the tokenizer service. See Initial steps to setup schema and connections for Card data security (KB2238661) for more information.
Perform the following set up tasks for the token signer:
Nota: Ensure you are using the Token Signing credentials JSON file from the tokenizer service when performing the above set up tasks.
Procedimento
-
Navigate to .
-
Enter the following field values.
| Field | Value |
|---|
| Grant type |
JWT Bearer |
| OAuth provider |
<The OAuth provider for the client bearer token> |
| JWT Provider |
<The Token Signing JWT Provider created from the task Set up a JWT Provider> |
-
Select Submit.
-
In the OAuth Entity Profiles list, verify Is default is set to
false.
-
Set up an OAuth Credential.
In the OAuth entity profile field, select the OAuth entity profile created earlier in this procedure.
-
Navigate to .
-
Select the CardDataSecurity.DataTokenSigner record.
-
In the Connections related list, select New.
-
Enter the following field values.
| Field | Value |
|---|
| Name |
<Name of the HTTP(s) connection> |
| Connection URL |
<The tokenizer service endpoint URL i.e. the tokenURI value from the token signing credentials JSON file> |
| Credential |
<The OAuth Credential created earlier in this procedure> |
| Connection alias |
sn_data_sec.CardDataSecurity_DataTokenSigner |
| vault_id Attribute |
<The vault ID of the tokenizer service data vault> |
Resultado
The token signing JWT Provider is configured.