platform icon indicating copy to clipboard operation
platform copied to clipboard

JWKS for KAS keys

Open pflynn-virtru opened this issue 1 year ago • 2 comments

All keys available for encryption via SDK clients should be exposed with a JWKS endpoint.

Each JWK should have a property that can be used to match an attribute to a key.

relates to:

  • https://github.com/opentdf/platform/issues/717
  • https://github.com/opentdf/platform/issues/335

pflynn-virtru avatar Jul 02 '24 19:07 pflynn-virtru

@pflynn-virtru Why do we want to match an attribute to a key? Shouldn't we always just get the most up to date key from kas?

Don't we already offer the jwk option from the public key endpoint.

strantalis avatar Jul 12 '24 00:07 strantalis

@strantalis are we still going to support this in the future?

jrschumacher avatar Jan 28 '25 03:01 jrschumacher