If only the server which signed the JWT can verify it, how does it solve the problem of NOT having single point of failure?
It does not... you should use other techniques such as public and private keys to ensure other servers can verify the JWT.
For your security, we need to re-authenticate you.
Click the link we sent to , or click here to sign in.
If only the server which signed the JWT can verify it, how does it solve the problem of NOT having single point of failure?
It does not... you should use other techniques such as public and private keys to ensure other servers can verify the JWT.