Validating JWT with JWKS: Can we store JWKS file instead of downloading every time?

john.gateley · April 19, 2019, 1:42pm

Please do cache the result of the .well-known file. It will change, though extremely rarely.
Your code must handle when the key used to sign the token does not appear in your cache, then you will have to re-download the file.

John

Topic		Replies	Views
Auth0 Failures getting .well-known/jwks.json Get Help jwks	10	18061	February 15, 2019
Feedback on Caching JWKS for JWT Verification in Ruby Get Help apis , application	2	182	July 15, 2024
Basic question about JWKS URL Get Help login-experience , new-universal-login-experience	4	1940	July 30, 2024
How do I properly cache the JWKS? Get Help jwks , cache , auth0-php	3	6205	October 16, 2020
Will public key from JWKS go invalid Get Help jwks , jwt-validation , python	4	6447	August 19, 2019

Validating JWT with JWKS: Can we store JWKS file instead of downloading every time?

Related topics