@Dino-at-Google, @Dino, @marshg@google.com

Can we use generate JWT policy for signing using PS256 algorithm?

I presume PS256 algorithm is only available from 4.50.xx versions of on-prem.

Can you please let me know how to use PS256 algorithm on the 4.19.1 version.

Is there any OOTB java callout available for the mentioned requirment?

if available can you please share me the GIT link.

Note: Use this same example to generate a JWT for the PS256 or ES256 algorithm. Just change the value of <Algorithm>RS256</Algorithm> to PS256 or ES256. For ES256 you also have to specify the a key compatible with the algorithm. For more on the key requirments, see About signature encryption algorithms.

This example policy generates a new JWT and signs it using the HS256 algorithm. HS256 relies on a shared secret for both signing and verifying the signature.

When this policy action is triggered, Edge encodes the JWT header and payload, then digitally signs the JWT. See the video above for a complete example, including how to make a request to the policy.

The policy configuration here will create a JWT with a set of standard claims as defined by the JWT specification, including an expiry of 1 hour, as well as an additional claim. You can include as many additional claims as you wish. See the Element reference for details on the requirements and options for each element in this sample policy