The goal of this project is to secure movies-app using Keycloak (with PKCE). movies-app consists of two applications: one is a Spring Boot Rest API called movies-api and another is a React application called movies-ui.
Hello @ivangfr , as far as I know there are 2 ways to verify the JWT token
i) Forward the token to Auth server for verification
ii) Verify the token in Resource server itself using public key
In this project you have used the first way, is it possible to use the second way?
If yes could you please let me know.
Hello @ivangfr , as far as I know there are 2 ways to verify the JWT token i) Forward the token to Auth server for verification ii) Verify the token in Resource server itself using public key
In this project you have used the first way, is it possible to use the second way? If yes could you please let me know.