You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description:
I am using jwt filter for authentication, using remote_jwks to provide remote jwks uri and using cache_duration to configure cache refresh interval.
I have a query regarding following scenario:
When rotating signing keys, we begin by advertising the new key's on remote URI. Then, we activate it, and new tokens are signed with these new keys. However, I'm unable to determine if the new key has been cached successfully before activating new keys. Is there a method to log the cached keys or somehow check the cache?
Additionally, I cannot obtain tokens with the new key until I activate the new signing keys.
Title: Logging for cache refresh for JWKS
Description:
I am using jwt filter for authentication, using remote_jwks to provide remote jwks uri and using cache_duration to configure cache refresh interval.
I have a query regarding following scenario:
When rotating signing keys, we begin by advertising the new key's on remote URI. Then, we activate it, and new tokens are signed with these new keys. However, I'm unable to determine if the new key has been cached successfully before activating new keys. Is there a method to log the cached keys or somehow check the cache?
Additionally, I cannot obtain tokens with the new key until I activate the new signing keys.
Relevant Links:
https://www.envoyproxy.io/docs/envoy/latest/configuration/http/http_filters/jwt_authn_filter#config-http-filters-jwt-authn
The text was updated successfully, but these errors were encountered: