Socket IO with jwt authentication

SzabolcsG · January 28, 2022, 9:29am

Hi,

According to the installation doc I’ve installed rasa and initialized a new rasa assistant. I would like to communicate with the chatbot using socket.io. I followed the instruction according to Websocket Channel doc. Until this point worked everything as I expected.

I wanted to add a jwt token auth to the websocket channel. So I’ve added to credentials.yml file a jwt_key:

socketio:
  user_message_evt: user_uttered
  bot_message_evt: bot_uttered
  session_persistence: false
  jwt_key: T06blf6GQKBBKifmpnGdkXC2qzqbo6q3

I’ve generated a jwt token using this key using an online generator page:

I send this token with socket.io-client according to their doc. That works.

But when I send a fake token or even just not sending anything regarding authtentication it is still accepted and the connection is established. Could you please help me, what is missing from my config to have an safe websocket channel with jwt authentication.

Thanks in advance

meghna43 · February 9, 2024, 4:08am

@SzabolcsG can you explain how did you construct your payload that you send from webchat to bot

Topic		Replies	Views
Using JWT Authentication with RASA Rasa Open Source	4	772	February 16, 2022
Explanation needed on generation of JWT public key and jwt secret for socket.io channel [Deprecated] Rasa X Community Edition	17	1373	February 11, 2024
SocketIO connector with JWT authentication Rasa Open Source	0	463	September 29, 2022
Tutorial - Adding JWT Auth To Rasa Chat Widget Rasa Open Source	0	401	December 14, 2022
Authentication of Rasa core for WebChat UI or Socketio Rasa Open Source	17	5719	August 26, 2023

Socket IO with jwt authentication

Related topics