Dear community,
my use case is that due key rotation on jwt issuer, jwt comprise the kid field, like:
{
"typ": "JWT",
"alg": "RS256",
"kid": "public:some-uuid-string"
}
Afaics in the docs (haproxy 2.6) there is some possibility to access cert-list (which is also possible to be updated dynamically via api). But I cant figure out the proper config snippet which would call jwt_verify only once and toward the cert which is described in the kid section.
Suggestions or solution highly appreciated, thank you in advance.
1 post - 1 participant