Knox: Failed to verify the token signature of eyJraW...o5t27A
Issue
User cannot login to Knox Web UI. In knox gateway log show following messages:
2024-03-25 13:28:08,500 INFO knox.gateway (KnoxPamRealm.java:doGetAuthorizationInfo(129)) - Computed roles/groups: [domain_users, group01] for principal: user01
2024-03-25 13:28:08,503 INFO knox.gateway (CookieUtils.java:getCookiesForName(46)) - Unable to find cookie with name: original-url
2024-03-25 13:28:08,505 INFO service.knoxsso (WebSSOResource.java:addJWTHadoopCookie(403)) - JWT cookie successfully added.
2024-03-25 13:28:08,505 INFO service.knoxsso (WebSSOResource.java:getAuthenticationToken(296)) - About to redirect to original URL: https://knoxserver.example.com:8443/gateway/homepage/home/
2024-03-25 13:28:08,530 WARN federation.jwt (AbstractJWTFilter.java:validateToken(343)) - Failed to verify the token signature of eyJraW...o5t27A (7a5b38b5...714132efdf90)
Caused
Browser still cached old Knox session token. This caused invalid token since token is already expired.
Resolution
Clear Browser cache.