This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

How to present jwks from a private key stored in KVM?

Posted on 09-27-2022 07:12 AM
SoumikDas
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

We are using Apigee as our internal security token service to translate jwt from multiple authentication provider. We are minting new JWT tokens in Apigee. To make the consumption easier we would like to expose a jwks endpoint. To make it easy to maintain I am trying to generate the JWK in Apigee from the private key stored in the encrypted KVM. Anyone has done something similar ?

0 1 84
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

Maybe this will help? https://github.com/DinoChiesa/Apigee-JWT-with-JWKS

My approach in that example was to load both the private key and the JWKS-formatted public key into the KVM. 

There are other alternatives of course. You could write a Java callout that ingests the private key, then extracts the public key from that and reformats it as a JWK, at runtime. If you do it that way then you don't need to "pre-compute" the JWKS and load it into the KVM.  But you do need to write the Java code that does the transformation/extraction. 

Ether way would work.

0 Likes
Top Solution Authors
View all