Keats
commented
2 years ago It's already kinda supported? https://github.com/Keats/jsonwebtoken/blob/master/examples/auth0.rs
Closed lubitelpospat closed 2 years ago
Keats
commented
2 years ago It's already kinda supported? https://github.com/Keats/jsonwebtoken/blob/master/examples/auth0.rs
lubitelpospat
commented
2 years ago Thank you for your immediate response! Sorry, for some reason I didn't notice it in the documentation. Again, thank you for your time!
Many providers, e.g. Apple, ship their public keys in form of JWKS for JWT validation. Now, many users have to create dedicated micro services in other languages, rely on self-written implementations or use third-party libraries along with this project as a workaround. However, it would be relatively easy to natively integrate JWKS support into this library: one needs to retrieve kid field from JWT, match it against kid fields in JWKS, and validate the JWT against the corresponding JWK. I request this feature to be added to this library, and if the maintainer(s) of this project do not mind, I cat fork, add feature and create a PR.