Is it possible to create a user and generate JWT instead of session

Original message was deleted

fabienne•8/20/24, 5:29 AM

the answer is it depends, so first question is do you use our hosted login ui or our session api with a custom ui to authenticate your users?

fabienne•8/20/24, 5:30 AM

if you use our hosted login and oidc to login, you can configure on your app if you want to get a bearer or a jwt token

fabienne•8/20/24, 5:31 AM

if you use the session api, the session token is always opaque, but you can also decide to build oidc into your custom login ui and therefore create jwt tokens

fabienne•8/20/24, 5:32 AM

However we do have plans to implement a token exchange where you can exchange a session token for a jwt token: https://github.com/zitadel/zitadel/issues/7900

GitHub

Allow Token Exchange with Session Token · Issue #7900 · zitadel/zi...

We should allow Session Tokens to be exchanged for OAuth / OIDC tokens on the Token Exchange. This would give developers the opportunity to get an access_token from a session token, without the nee...