Skip to content

feat: Add guidance on JWKS caching#1569

Draft
CharlesRea wants to merge 2 commits into
auth0:mainfrom
CharlesRea:feat/jwks-caching-guidance
Draft

feat: Add guidance on JWKS caching#1569
CharlesRea wants to merge 2 commits into
auth0:mainfrom
CharlesRea:feat/jwks-caching-guidance

Conversation

@CharlesRea

Copy link
Copy Markdown

Description

Small improvement to expand on our guidance for caching the tenant /.well-known/jwks.json endpoint used to validate Auth0-issued JWTs.

  • Adds a canonical Cache the JSON Web Key Set section to the JWKS hub page (json-web-key-sets.mdx), covering:
    • More in depth reasoning for why caching should be used
    • More in depth info on when to refetch based off receiving new kid whilst avoiding retry storm.
  • Replaces the duplicated one-line caching advice in locate-json-web-key-sets.mdx and token-best-practices.mdx with a pointer to the new section, so there is a single source of truth.

Checklist

  • I've read and followed CONTRIBUTING.md.
  • I've tested the site build for this change locally.
  • I've made appropriate docs updates for any code or config changes.
  • I've coordinated with the Product Docs and/or Docs Management team about non-trivial changes.

Comment thread main/docs/secure/tokens/json-web-tokens/json-web-key-sets.mdx Outdated
Comment thread main/docs/secure/tokens/json-web-tokens/json-web-key-sets.mdx Outdated
Comment thread main/docs/secure/tokens/json-web-tokens/json-web-key-sets.mdx Outdated
Comment thread main/docs/secure/tokens/json-web-tokens/json-web-key-sets.mdx

@AlexJPotter AlexJPotter left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants