Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
danscan
44 days ago
|
parent
|
context
|
favorite
| on:
Self-Signed JWTs
In some apps, the client may be the signing authority (e.g. it owns the resource it's accessing).
In that case, the client can possess the JWK keypair and do its own signing.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
In that case, the client can possess the JWK keypair and do its own signing.