Edge Microgateway support for multiple token verification keys

nejra
Participant II

Hi,

I am trying to configure Microgateway in a way that every tenant has its own token verification key. Default behavior is to retrieve public key via publicKey endpoint from edgemicro-auth. Can we override this somehow to retrieve multiple keys on startup? There is possibility to have Edge API proxy per tenant, so I wonder can we use it to support different keys?

Any suggestion on implementation is welcome!

Solved Solved
0 1 159
1 ACCEPTED SOLUTION

Former Community Member
Not applicable

With some modifications to the proxy, this is possible. You'll notice, there is also a /jwkPublicKeys endpoint. JWK supports multiple public keys, each with a key id (kid). At the moment, there is support for two keys, but that could be extended to add more.

View solution in original post

1 REPLY 1

Former Community Member
Not applicable

With some modifications to the proxy, this is possible. You'll notice, there is also a /jwkPublicKeys endpoint. JWK supports multiple public keys, each with a key id (kid). At the moment, there is support for two keys, but that could be extended to add more.