...
In the above configuration the broker points to the appropriate OAuth provider sasl.oauthbearer.jwks.endpoint.url
to retrieve a the set of JWKs for validation. In this example, a non-default value for sasl.oauthbearer.scope.claim.name
has been provided because the provider uses scp
for the name of the scope claim in the JWT it produces.
JWKS Management Logic
The JSON Web Key Set (JWKS) is a JSON document that lists the keys provided by which the OAuth/OIDC provider has signed the JWTthat lists the keys used to sign the JWTs it issues.
Here is a sample JWKS JSON document:
...