This cache control leads me to believe that I should be re-fetching the jwks every 15 seconds in order to obey the caching behavior sent back from the endpoint.
However, fetching every 15 seconds seems excessive. Other posts on the forum recommends hours between fetching.
Why don’t the cache control headers contain data that aligns with the recommendations form support here?
There isn’t an exact number of seconds you need to cache the JWKs, as stated in this post:
JWKs will return the same set of keys most of the time, so you can just cache them and keep using them and if they get denied you can request them again.
If you have any other question feel free to ask.
If you have any other question feel free to reach out.