Using public keys for verifying JWTs

Darko · May 27, 2022, 10:34am

The participant can be configured to verify the signature on JWTs using certificates as described here: Daml Sandbox — Daml SDK 2.2.0 documentation

Given that certificates are basically wrappers of public keys with some additional information, can we also provide the path to the public key directly in the configuration for this verification, or does the signature checking somehow rely on the certificate wrapper?

cocreature · May 27, 2022, 10:51am

At the moment, we only support certificates but I don’t believe there is a strong reason for that, we just extract the key out of the certificate and ignore everything else. Is there a particular reason why you cannot generate a certificate for your key?

Darko · May 27, 2022, 11:20am

I don’t believe there is, as creating a self-signed certificate is pretty straightforward. I just wanted to see if that step is necessary. Thank you!

Topic		Replies	Views
PKI integration with Daml Questions daml , security	3	333	October 27, 2021
Use of identifier as public and private keys Questions	1	126	May 3, 2022
Signing Transactions Questions jwt	4	488	June 22, 2022
Does the LedgerAPI support encrypted JWTs (JWEs)? Questions ledger-api	1	226	March 24, 2022
Secure DAML Infrastructure – Part 2 – JWT, JWKS and Auth0 News blog	0	408	December 1, 2020

Using public keys for verifying JWTs

Related Topics