HumationHuman + Automation
Back to Catalog

Validate Auth0 JWT tokens using JWKS or signing cert

JimleukJimleuk
1019 views
2/3/2026
Lead ManagementHubSpotSalesforceDeduplicationCRM
Official Page

> Note: This template requires a self-hosted community edition of n8n. Does not work on cloud.

Try It Out

This n8n template shows how to validate API requests with Auth0 Authorization tokens.

Auth0 doesn't work with the standard JWT auth option because:

  1. Auth0 tokens use the RS256 algorithm.
  2. RS256 JWT credentials in n8n require the user to use private and public keys and not secret phrase.
  3. Auth0 does not give you access to your Auth0 instance private keys.

The solution is to handle JWT validation after the webhook is received using the code node.

How it works

  • There are 2 approaches to validate Auth0 tokens: using your application's JWKS file or using your signing cert.
  • Both solutions uses the code node to access nodeJS libraries to verify the token.
  • JWKS: the JWK-RSA library is used to validate the application's JWKS URI hosted on Auth0
  • Signing Cert: the application's signing cert is imported into the workflow and used to verify token.
  • In both cases, when the token is found to be invalid, an error is thrown. However, as we can use error outputs for the code node, the error does not stop the workflow and instead is redirected to a 401 unauthorized webhook response.
  • When token is validated, the webhook response is forwarded on the success branch and the token decoded payload is attached.

How to use

  • Follow the instructions as stated in each scenario's sticky notes.
  • Modify the Auth0 details with that of your application and Auth0 instance.

Requirements

  • Self-hosted community edition of n8n
  • Ability to install npm packages
  • Auth0 application and some way to get either the JWK url or signing cert.

Validate Auth0 JWT Tokens using JWKS or Signing Cert

This n8n workflow provides a robust solution for validating Auth0 JWT (JSON Web Tokens) using either the JSON Web Key Set (JWKS) endpoint or a provided signing certificate. It acts as an API endpoint that receives a JWT and returns its validation status and decoded payload.

What it does

  1. Receives a JWT: The workflow starts with a Webhook node, configured to listen for incoming HTTP POST requests. It expects a JWT in the request body.
  2. Processes the Request: A Code node is used to extract the JWT from the incoming webhook request and prepare it for validation.
  3. Validates the JWT: (Implicit in the "Code" node's function, as the provided JSON does not include specific JWT validation nodes like "Auth0" or "JWT Verify"). The Code node is responsible for performing the actual JWT validation logic, likely by:
    • Fetching the JWKS from the Auth0 tenant's /certs or /jwks.json endpoint.
    • Or, using a pre-configured signing certificate to verify the token's signature.
    • Decoding the token and checking its claims (e.g., expiration, issuer, audience).
  4. Responds to the Webhook: A Respond to Webhook node sends back the validation result (success/failure) and the decoded token payload to the client that initiated the request.
  5. No Operation, do nothing: A No Operation, do nothing node is present, likely as a placeholder or for debugging purposes, indicating a path where no further action is taken.
  6. Sticky Note: A Sticky Note node is included, typically used for documentation or comments within the workflow itself.

Prerequisites/Requirements

  • Auth0 Account: You need an Auth0 account and an application configured to issue JWTs.
  • n8n Instance: A running instance of n8n (self-hosted or cloud).
  • Basic JavaScript Knowledge: To modify or understand the JWT validation logic within the Code node, familiarity with JavaScript is beneficial.

Setup/Usage

  1. Import the Workflow:
    • Download the provided JSON file.
    • In your n8n instance, click "Workflows" in the left sidebar.
    • Click "New" and then "Import from JSON".
    • Paste the JSON content or upload the file.
  2. Configure the Webhook:
    • The Webhook node will automatically generate a unique URL when the workflow is activated. This is the endpoint you will send your JWTs to.
  3. Configure the Code Node:
    • Crucially, you will need to implement the JWT validation logic within the Code node. This will involve:
      • Auth0 Domain: Providing your Auth0 tenant domain.
      • JWKS Endpoint: If using JWKS, the code will need to fetch keys from https://YOUR_AUTH0_DOMAIN/.well-known/jwks.json.
      • Signing Certificate: If using a signing certificate, the certificate content will need to be accessible to the Code node (e.g., as an environment variable or hardcoded for testing, though not recommended for production).
      • JWT Library: You might need to use a JavaScript JWT library (e.g., jsonwebtoken if n8n's sandbox allows it, or a custom implementation) to perform the verification.
    • The Code node should output an object indicating the validation status (e.g., isValid: true/false) and the decoded token payload.
  4. Activate the Workflow: Once configured, activate the workflow by toggling the switch in the top right corner of the workflow editor.
  5. Send JWTs for Validation: Send a POST request to the Webhook URL with your JWT in the request body (e.g., {"jwt": "your.jwt.token"}). The workflow will respond with the validation result.

Related Templates

Generate song lyrics and music from text prompts using OpenAI and Fal.ai Minimax

Spark your creativity instantly in any chat—turn a simple prompt like "heartbreak ballad" into original, full-length lyrics and a professional AI-generated music track, all without leaving your conversation. 📋 What This Template Does This chat-triggered workflow harnesses AI to generate detailed, genre-matched song lyrics (at least 600 characters) from user messages, then queues them for music synthesis via Fal.ai's minimax-music model. It polls asynchronously until the track is ready, delivering lyrics and audio URL back in chat. Crafts original, structured lyrics with verses, choruses, and bridges using OpenAI Submits to Fal.ai for melody, instrumentation, and vocals aligned to the style Handles long-running generations with smart looping and status checks Returns complete song package (lyrics + audio link) for seamless sharing 🔧 Prerequisites n8n account (self-hosted or cloud with chat integration enabled) OpenAI account with API access for GPT models Fal.ai account for AI music generation 🔑 Required Credentials OpenAI API Setup Go to platform.openai.com → API keys (sidebar) Click "Create new secret key" → Name it (e.g., "n8n Songwriter") Copy the key and add to n8n as "OpenAI API" credential type Test by sending a simple chat completion request Fal.ai HTTP Header Auth Setup Sign up at fal.ai → Dashboard → API Keys Generate a new API key → Copy it In n8n, create "HTTP Header Auth" credential: Name="Fal.ai", Header Name="Authorization", Header Value="Key [Your API Key]" Test with a simple GET to their queue endpoint (e.g., /status) ⚙️ Configuration Steps Import the workflow JSON into your n8n instance Assign OpenAI API credentials to the "OpenAI Chat Model" node Assign Fal.ai HTTP Header Auth to the "Generate Music Track", "Check Generation Status", and "Fetch Final Result" nodes Activate the workflow—chat trigger will appear in your n8n chat interface Test by messaging: "Create an upbeat pop song about road trips" 🎯 Use Cases Content Creators: YouTubers generating custom jingles for videos on the fly, streamlining production from idea to audio export Educators: Music teachers using chat prompts to create era-specific folk tunes for classroom discussions, fostering interactive learning Gift Personalization: Friends crafting anniversary R&B tracks from shared memories via quick chats, delivering emotional audio surprises Artist Brainstorming: Songwriters prototyping hip-hop beats in real-time during sessions, accelerating collaboration and iteration ⚠️ Troubleshooting Invalid JSON from AI Agent: Ensure the system prompt stresses valid JSON; test the agent standalone with a sample query Music Generation Fails (401/403): Verify Fal.ai API key has minimax-music access; check usage quotas in dashboard Status Polling Loops Indefinitely: Bump wait time to 45-60s for complex tracks; inspect fal.ai queue logs for bottlenecks Lyrics Under 600 Characters: Tweak agent prompt to enforce fuller structures like [V1][C][V2][B][C]; verify output length in executions

Daniel NkenchoBy Daniel Nkencho
601

Synchronizing WooCommerce inventory and creating products with Google Gemini AI and BrowserAct

Synchronize WooCommerce Inventory & Create Products with Gemini AI & BrowserAct This sophisticated n8n template automates WooCommerce inventory management by scraping supplier data, updating existing products, and intelligently creating new ones with AI-formatted descriptions. This workflow is essential for e-commerce operators, dropshippers, and inventory managers who need to ensure their product pricing and stock levels are synchronized with multiple third-party suppliers, minimizing overselling and maximizing profit. --- Self-Hosted Only This Workflow uses a community contribution and is designed and tested for self-hosted n8n instances only. --- How it works The workflow is typically run by a Schedule Trigger (though a Manual Trigger is also shown) to check stock automatically. It reads a list of suppliers and their inventory page URLs from a central Google Sheet. The workflow loops through each supplier: A BrowserAct node scrapes the current stock and price data from the supplier's inventory page. A Code node parses this bulk data into individual product items. It then loops through each individual product found. The workflow checks WooCommerce to see if the product already exists based on its name. If the product exists: It proceeds to update the existing product's price and stock quantity. If the product DOES NOT exist: An If node checks if the missing product's category matches a predefined type (optional filtering). If it passes the filter, a second BrowserAct workflow scrapes detailed product attributes from a dedicated product page (e.g., DigiKey). An AI Agent (Gemini) transforms these attributes into a specific, styled HTML table for the product description. Finally, the product is created in WooCommerce with all scraped details and the AI-generated description. Error Handling: Multiple Slack nodes are configured to alert your team immediately if any scraping task fails or if the product update/creation process encounters an issue. Note: This workflow does not support image uploads for new products. To enable this functionality, you must modify both the n8n and BrowserAct workflows. --- Requirements BrowserAct API account for web scraping BrowserAct n8n Community Node -> (n8n Nodes BrowserAct) BrowserAct templates named “WooCommerce Inventory & Stock Synchronization” and “WooCommerce Product Data Reconciliation” Google Sheets credentials for the supplier list WooCommerce credentials for product management Google Gemini account for the AI Agent Slack credentials for error alerts --- Need Help? How to Find Your BrowseAct API Key & Workflow ID How to Connect n8n to Browseract How to Use & Customize BrowserAct Templates How to Use the BrowserAct N8N Community Node --- Workflow Guidance and Showcase STOP Overselling! Auto-Sync WooCommerce Inventory from ANY Supplier

Madame AI Team | KaiBy Madame AI Team | Kai
600

Tax deadline management & compliance alerts with GPT-4, Google Sheets & Slack

AI-Driven Tax Compliance & Deadline Management System Description Automate tax deadline monitoring with AI-powered insights. This workflow checks your tax calendar daily at 8 AM, uses GPT-4 to analyze upcoming deadlines across multiple jurisdictions, detects overdue and critical items, and sends intelligent alerts via email and Slack only when immediate action is required. Perfect for finance teams and accounting firms who need proactive compliance management without manual tracking. 🏛️🤖📊 Good to Know AI-Powered: GPT-4 provides risk assessment and strategic recommendations Multi-Jurisdiction: Handles Federal, State, and Local tax requirements automatically Smart Alerts: Only notifies executives when deadlines are overdue or critical (≤3 days) Priority Classification: Categorizes deadlines as Overdue, Critical, High, or Medium priority Dual Notifications: Critical alerts to leadership + daily summaries to team channel Complete Audit Trail: Logs all checks and deadlines to Google Sheets for compliance records How It Works Daily Trigger - Runs at 8:00 AM every morning Fetch Data - Pulls tax calendar and company configuration from Google Sheets Analyze Deadlines - Calculates days remaining, filters by jurisdiction/entity type, categorizes by priority AI Analysis - GPT-4 provides strategic insights and risk assessment on upcoming deadlines Smart Routing - Only sends alerts if overdue or critical deadlines exist Critical Alerts - HTML email to executives + Slack alert for urgent items Team Updates - Slack summary to finance channel with all upcoming deadlines Logging - Records compliance check results to Google Sheets for audit trail Requirements Google Sheets Structure Sheet 1: TaxCalendar DeadlineID | DeadlineName | DeadlineDate | Jurisdiction | Category | AssignedTo | IsActive FED-Q1 | Form 1120 Q1 | 2025-04-15 | Federal | Income | John Doe | TRUE Sheet 2: CompanyConfig (single row) Jurisdictions | EntityType | FiscalYearEnd Federal, California | Corporation | 12-31 Sheet 3: ComplianceLog (auto-populated) Date | AlertLevel | TotalUpcoming | CriticalCount | OverdueCount 2025-01-15 | HIGH | 12 | 3 | 1 Credentials Needed Google Sheets - Service Account OAuth2 OpenAI - API Key (GPT-4 access required) SMTP - Email account for sending alerts Slack - Bot Token with chat:write permission Setup Steps Import workflow JSON into n8n Add all 4 credentials Replace these placeholders: YOURTAXCALENDAR_ID - Tax calendar sheet ID YOURCONFIGID - Company config sheet ID YOURLOGID - Compliance log sheet ID C12345678 - Slack channel ID tax@company.com - Sender email cfo@company.com - Recipient email Share all sheets with Google service account email Invite Slack bot to channels Test workflow manually Activate the trigger Customizing This Workflow Change Alert Thresholds: Edit "Analyze Deadlines" node: Critical: Change <= 3 to <= 5 for 5-day warning High: Change <= 7 to <= 14 for 2-week notice Medium: Change <= 30 to <= 60 for 2-month lookout Adjust Schedule: Edit "Daily Tax Check" trigger: Change hour/minute for different run time Add multiple trigger times for tax season (8 AM, 2 PM, 6 PM) Add More Recipients: Edit "Send Email" node: To: cfo@company.com, director@company.com CC: accounting@company.com BCC: archive@company.com Customize Email Design: Edit "Format Email" node to change colors, add logo, or modify layout Add SMS Alerts: Insert Twilio node after "Is Critical" for emergency notifications Integrate Task Management: Add HTTP Request node to create tasks in Asana/Jira for critical deadlines Troubleshooting | Issue | Solution | |-------|----------| | No deadlines found | Check date format (YYYY-MM-DD) and IsActive = TRUE | | AI analysis failed | Verify OpenAI API key and account credits | | Email not sending | Test SMTP credentials and check if critical condition met | | Slack not posting | Invite bot to channel and verify channel ID format | | Permission denied | Share Google Sheets with service account email | 📞 Professional Services Need help with implementation or customization? Our team offers: 🎯 Custom workflow development 🏢 Enterprise deployment support 🎓 Team training sessions 🔧 Ongoing maintenance 📊 Custom reporting & dashboards 🔗 Additional API integrations Discover more workflows – Get in touch with us

Oneclick AI SquadBy Oneclick AI Squad
93