Hello Team, I’m using latest OpenEMR 6.1.0 Docker version. I’m trying to register a client for bulk export. It breaks when I’m requesting access (bearer) token using client assertion I generated with command-runner. The response json is nothing special:
“error”: “invalid_client”,
“error_description”: “Client authentication failed”,
“message”: “Client authentication failed”
But the logs (full logs attached) are more interesting, especially this part:
[php:notice] [pid 148] [client 3.232.164.182:53598] [2022-04-18T13:11:04.539748+00:00] OpenEMR.ERROR: CustomClientCredentialsGrant->validateClient() jwt failed required constraints {“client”:“A3wnpy-IgyZN6NOxzDVxjajW3f5_NgdKHUbjngYwCn0”,“exceptionMessage”:“The token violates some mandatory constraints, details:\n- Token signature mismatch”,“claims”:{“iss”:“A3wnpy-IgyZN6NOxzDVxjajW3f5_NgdKHUbjngYwCn0”,“aud”:[“http://3.232.176.248/oauth2/default/token"],“jti”:“f8815641-cb4f-41dc-ba01-3c123cc5de58”,“iat”:"{“date”:“2022-04-18 13:10:33.920247”,“timezone_type”:1,“timezone”:”+00:00"}",“nbf”:"{“date”:“2022-04-18 13:10:33.920247”,“timezone_type”:1,“timezone”:"+00:00"}",“exp”:"{“date”:“2022-04-18 13:11:33.920247”,“timezone_type”:1,“timezone”:"+00:00"}",“sub”:“A3wnpy-IgyZN6NOxzDVxjajW3f5_NgdKHUbjngYwCn0”},“expectedAudience”:“http://3.232.176.248/oauth2/default/token”} []
logs.txt (6.2 KB)
So is it safe to propose that the root cause is somehow date/time connected? Or there’s something else involved?