You won’t be able to user symmetric algos in a client side app. (i.e. you can’t use HS256 in a SPA).
Here is a good post that breaks it down:
In short: yes, you will need to use RS 256.
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Confused on how to implement this architecure | 4 | 3572 | October 16, 2019 | |
| Auth0 Configuration with UI-Less Service API and a separate UI app | 2 | 3750 | December 4, 2018 | |
| Auth0 secured API and separate NativeApp and SPA App | 2 | 3553 | August 30, 2019 | |
| Different API access scenarios; own SPA, tenants, third-parties | 5 | 5002 | March 2, 2018 | |
| One app having access to multiple APIs | 5 | 258 | April 19, 2024 |