kid
) can only be registered once. Choose either direct or well-known registration for each unique key.direct
or well_known
type: "well_known"
, your endpoint must return a JWKS that meets these requirements:
keys
that has a list as its value.keys
) to be valid the following must be met:
kty
and it must be equal to RSA
n
and it must be a string that is valid n
for a JWK in accordance to the RFCe
and it must be a string that is valid e
for a JWK in accordance to the RFCalg
but if it is provided the value must be RSA-OAEP-256
kid
and it must be a string that is a valid id
which will be passed as cid
when making requests to Method