'Validate UserIdentityToken with Javascript

How do i use javascript to validate the token from Office.context.mailbox.getUserIdentityTokenAsync(). Are there any javascript libraries for this?

validationoutlook-addinoffice-jsaccess-tokensigning


Solution 1:[1]

Here is documentation on validating an identity token. We do not supply a JS library.

Solution 2:[2]

You can validate the token with a standard Javascript JWT library (like 'jsonwebtoken'). Just read the x509 cert out of the 'amurl' (from the decoded token; decoding can be done with a JWT library as well) and insert it into a PEM format string like this:

  const jwt = require('jsonwebtoken');

  ...

  let token = 'eyJhbG...';
  let amurl_X509Certificate_value = 'MIIGwz...';
  let verify = jwt.verify(
    token,
    [
      '-----BEGIN CERTIFICATE-----',
      amurl_X509Certificate_value,
      '-----END CERTIFICATE-----',
    ].join('\n'),
    { algorithms: ['RS256'] }
  );

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 Outlook Add-ins Team - MSFT
Solution 2 CK_One

Related Questions

jQuery: Check to see if table row containing certain values exists already

express.js - best POST json schema validator [closed]

Falcon - how to validate incoming requests against Swagger specification?

Add Dropdown Validation to an entire Excel Column using OpenXML

IDN (Domain) validation with regular expression

regular expression not to allow zero

Is it possible to validate that one of 2 parameters are present using class-validator?

x:bind and data validation for numeric field

How to check whether a given string is valid JSON in Java

How do I pass kwargs to pydantic validator

Show/Hide Checkout Fields according to answer to previous question

Oracle ADF Validate the selected value of a inputComboboxListOfValues

How to validate timestamp in javascript

Java NullPointer Custom Validator javax.validation.ConstraintValidator

Russia VAT Number validation