fix: Use fixed value of aud field in JWT claim (#896)

Closes: SDK-3020
box · Mar 13, 2023 · 8c9982d · 8c9982d
1 parent d789081
commit 8c9982d
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/Box.V2/JWTAuth/BoxJWTAuth.cs b/Box.V2/JWTAuth/BoxJWTAuth.cs
@@ -106,7 +106,7 @@ public BoxJWTAuth(IBoxConfig boxConfig, IBoxService boxService)
         /// <param name="boxConfig">Config contains information about client id, client secret, enterprise id, private key, private key password, public key id </param>
         /// <param name="boxService">Box service is used to perform GetToken requests</param>
         /// <param name="retryStrategy">Retry strategy used when retrying http request</param>
-        /// 
+        ///
         public BoxJWTAuth(IBoxConfig boxConfig, IBoxService boxService, IRetryStrategy retryStrategy) : this(boxConfig, boxService)
         {
             _retryStrategy = retryStrategy;
@@ -265,7 +265,7 @@ private string ConstructJWTAssertion(string sub, string boxSubType, DateTimeOffs
                 expireTime = nowOverride.Value.AddSeconds(30);
             }
 
-            var payload = new JwtPayload(_boxConfig.ClientId, new Uri(_boxConfig.BoxApiHostUri, Constants.AuthTokenEndpointString).ToString(),
+            var payload = new JwtPayload(_boxConfig.ClientId, new Uri(Constants.BoxAuthTokenApiUriString).ToString(),
                 claims, null, expireTime.LocalDateTime);
 
             var header = new JwtHeader(signingCredentials: _credentials);