Mixing key signatures


#1

Would it be possible mix different key signatures per client id? It could be useful sign some jwt vía rs256, and another set of clients with hs256 (for example). Simple curiosity.

Thanks!


#2

Regarding what feature?


#3

Different clients having different constraints to process jwt tokens (external organizations sharing our tokens). It was only curiosity, I know it doesn’t worth do nothing about it.

Thanks again!


#4

But is this regarding JWT Access Tokens, OpenID Tokens, Userinfo responses, JWT Client Authentication, …? :slight_smile:


#5

There has some really needs.
https://openid.net/specs/openid-financial-api-part-2.html#jws-algorithm-considerations