Consider using signWithCertificate when building the JWT signature

[cmortimore]

Instead of passing in the private key as base64, you can sign by reference to a private key managed by the platform.

Check out this method: https://developer.salesforce.com/docs/atlas.en-us.apexcode.meta/apexcode/apex_classes_restful_crypto.htm#apex_System_Crypto_signWithCertificate

[bassman531]

@cmortimore Sorry for the delay in responding here.

That's a good idea and should definitely be worked on.