2 Comments
User's avatar
⭠ Return to thread
Aman Godara's avatar

If only the server which signed the JWT can verify it, how does it solve the problem of NOT having single point of failure?

Expand full comment
Eugénio Maza's avatar

It does not... you should use other techniques such as public and private keys to ensure other servers can verify the JWT.

Expand full comment