#+HashtagPLUS
In

Menu

#Jwks

6 posts

Feed·
6 of 6 posts
How EdDSA JWTs Solve the Agent Credential Problem
🖼️
0

How EdDSA JWTs Solve the Agent Credential Problem

DEV Community·Pico·29 days ago
#31OCAlK5
#agents#security#jwt#agent#token#harness

If your harness lives inside the same sandbox as the user code, every credential the harness holds belongs to the user code too. The fix isn't a new protocol.…

15s
Read More
We rotated our JWKS without overlap. Here is the 4-minute window that broke prod.
🖼️
0

We rotated our JWKS without overlap. Here is the 4-minute window that broke prod.

DEV Community·Blue Hills·29 days ago
#aZxTOMBW
#jwt#jwks#cache#rotation#issuer#overlap

An incident narrative about a 4-minute production outage caused by a JWKS rotation with insufficient overlap. The postmortem, the fix, and the CI check that catches it before deploy.

15s
Read More
JWT verification in production: an 8-check field guide
🖼️
0

JWT verification in production: an 8-check field guide

DEV Community·Blue Hills·29 days ago
#maSWw6eI
#jwt#oidc#security#deved#token#issuer

The eight checks every production JWT verifier must do, what each one prevents, and structured error codes for each failure mode. A reference doc for backend and identity teams.

15s
Read More
Three JWT bugs that ship to prod silently — and the 5-line CI test that catches them
🖼️
0

Three JWT bugs that ship to prod silently — and the 5-line CI test that catches them

DEV Community·Keynes Paul·about 1 month ago
#URpX13no
#bug#jwt#oidc#devsecops#jwks#token

Three concrete failure modes that take down OIDC in production: JWKS rotation without overlap, wrong audience claims, and issuer config drift.…

15s
Read More
Persistent JWT Signing Keys with PostgreSQL
📰
0

Persistent JWT Signing Keys with PostgreSQL

DEV Community·ShyGyver·about 1 month ago
#YNeutCXG
#key#jwks#security#const#fullscreen#await

How to replace the in-memory JWKS key store from the OIDC server tutorial with an encrypted, PostgreSQL-backed store so signing keys survive server restarts and work correctly across multiple instances.

15s
Read More
Faster JWT Key Rotation in API Gateway
📰
0

Faster JWT Key Rotation in API Gateway

Akamai·Jeffrey Costa·about 1 month ago
#PhfrLv55
#putjwtsettings#jwks#keys#json#jwks_uri#photo

JSON Web Tokens (JWT) use digital signatures to establish the authenticity of the data they contain, as well as authenticating the identity of the signer. A valid signature check ensures that any party can rely on the contents and the...

15s
Read More