Hi Andy, Sorry - yesterday was a holiday here. The easiest way to test out a token is to use the https://demo.scitokens.org/ service. It allows you to put whatever you want into the token and generates a valid signature (which, obviously, means you shouldn't enable such an insecure service beyond demos or tests). If you click on the "SET PAYLOAD TO ACCESS TO PROTECTED AREA", it'll generate a reasonable-looking token. The two things you probably want to change are: - Audience. Set this to be the same as what's in your scitokens.cfg - Scope paths. Set to the location your server is exporting. Here's an example `scitokens.cfg`: ``` [Global] audience = https://xrootd.example.com:8000 [Issuer DEMO] issuer = https://demo.scitokens.org # Prefix that's to be exported. base_path = /protected/foo # For controlling mapping, probably not needed for tests default_user = brian ``` Brian -- Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/1987#issuecomment-1599148019 You are receiving this because you are subscribed to this thread. Message ID: <[log in to unmask]> ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1