Stateless JWT not working in multi-server setup

[Chad Retz]

When I create a token on one server responding to DNS and then use it on another server responding to the same DNS host (with the same settings, just different A records) the token does not validate. I read https://groups.google.com/forum/#!searchin/play-silhouette/jwt/play-silhouette/s65vP3mk1To but I pass None as the DAO. Local testing shows that it does resolve even after server restart, it's the different hosts that seem to be the problem.

Any ideas? I am currently debugging this myself and will update if I find the answer. Thanks.

[Chad Retz]

For the record, I have overridden the auth service per https://groups.google.com/d/msg/play-silhouette/9gYkHUybzuo/VtRuLwuPHwAJ. But that should not make it server specific.

[Christian Kaps]

Hi,

do you store an encrypted subject in the authenticator? Maybe the application secret isn't the same?

Best regards,

Christian

[Chad Retz]

I do store an encrypted subject. The application secret is the same across both instances (I reuse the crypto secret, e.g. configuration.getString("play.crypto.secret").get). Sorry, I have not found time to debug this further to see which step does not validate.

Chad