i'm looking forward to use JWT but i have a kind os special use case and want to ask a few questions.
First of all I'm building a backend for a Plugin (for a platform). This backend can not interact with the Usermanagement of the platform it self, yet it obviously needs authentication of a users request.
Now i encounter the problem that there are 2 kinds of users requesting this backends one being a normal user the others are "Plugin-Admins".
Is there a way to autehnticate both via JWT but still distinguishing between users and admins ?
Can this be done with for instance 2 different Secretkeys (Is there an allready built in mechanism) ?
If not how would you suggest to achiev this ?
Hi all,
i'm looking forward to use JWT but i have a kind os special use case and want to ask a few questions. First of all I'm building a backend for a Plugin (for a platform). This backend can not interact with the Usermanagement of the platform it self, yet it obviously needs authentication of a users request. Now i encounter the problem that there are 2 kinds of users requesting this backends one being a normal user the others are "Plugin-Admins".
Is there a way to autehnticate both via JWT but still distinguishing between users and admins ? Can this be done with for instance 2 different Secretkeys (Is there an allready built in mechanism) ? If not how would you suggest to achiev this ?
Thanks in Advance.