Skip to main content

We created a public app to allow users to login the app using JWT. It turned out that the app was promoted to production and now upon an attempt to generate a new sandbox JWT token by the client for the app he gets an error 'Invalid Client ID'. It appears that the reason for the error is that we used the production app client ID (before it was sandbox client ID), but conversely, I see that production and sandbox client IDs are equal. Could you please advise what app client ID should client use to generate sandbox JWT?1713265810526.png

There might be some issue with the JWT token generation for sandbox environment. But it could be also an expected behavior. As for testing your own apps in sandbox environment, you can create a JWT token for all app under your account (sandbox account) instead of creating for a particular app specified by an app client id.

However, since your app is a public app, your customers can generate a production JWT token for that particular app. Though, for public apps, I recommend to use the 3-legged auth flow instead of JWT as it is easier for customer to authenticate the app themselves.


Reply