WebSDK Signature

Meeting SDK Web
1

Description
We are having issues with ONE user not being able to access our webinars from our site due to the error “invalid signature” . It has happened with multiple webinars and other users have had no issue attending these webinars and only is effecting this single user. We are unable to replicate this issue and are wondering if anyone has experienced this?

Browser Console Error
The full error message or issue you are running into.

Which Web Meeting SDK version?
2.9.7 but also happened with earlier versions for this specific user

To Reproduce(If applicable)
Steps to reproduce the behavior:
We cannot reproduce it because we are able to view the webinar without issue

Device (please complete the following information):

  • Device: PC
  • Browser: Chrome
3

are you creating the signature on your backend server or the client browser?

4

we are creating it on the client browser

5

generating the signature on the client browser is not a good idea

  • if the time on the client computer is not correctly synchronized, the signature will not work
  • your Client Secret / SDK Secret is not secret - it’s easy to get your secret out of the javascript code

if you still want to use the client to generate the signature, you could change the times (iat, exp, tokenExp) for the validity

6

@nhendry,

@j.schoenemeyer is correct, you should not create the signature on the client browser. Instead, it should be generated on the backend. Here is a helpful developer forum post that you can refer to for troubleshooting SDK JWT:

7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.