Token Validation
Tokens issued by CONNECT are signed with CONNECT’s private key using RS512. The signature can be validated with the use of CONNECT’s public jwks. The URI is available in the metadata document:
{
...
"jwks_uri" : "https://scienceconnect.io/api/oidc/jwk.json",
}
Applications can be configured to use plain, signed, or encrypted tokens as well as to select between RS512 and RS256 algorithms for the token signature.