So you are trying to sign/create a JWT in front end code instead a view in the rig?
Which is a security risk since you leak your Extension secret to the world.
It looks like you didn’t base64decode the secret before passing it to jsonwebtoken.sign
1 Like