How can we setup application without secret key as we now do not need secret key anymore.

humanitec / django-oauth-toolkit-jwt

django-oauth-toolkit extension that adds JWT support

MIT License

38 stars 26 forks source link

How can we setup application without secret key as we now do not need secret key anymore. #22

Closed Wrufesh closed 3 years ago

rafa-munoz commented 4 years ago

Hi Rupesh, this is not possible. Secrets are necessary to check the authenticity of the message. This way we would avoid anyone performing actions on behalf of other users without their consent.