question

HaTruong-6494 avatar image
0 Votes"
HaTruong-6494 asked ShwetaMathur answered

AD B2C userflow roll over key to sign JWT

I am using the predefined userflow and use the public key that AD B2C provides in jwks_uri to validate the token on my side. My question is whether that public key will be changed later?

Thanks,
Ha

azure-ad-b2c
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

ShwetaMathur avatar image
0 Votes"
ShwetaMathur answered

The Keys are referenced in your JWtIssuer Technical Profile and if your application is using an OIDC library it will automatically fetch this metadata to ensure the app uses the correct keys to validate tokens. The MSAL library helps in fetching the latest token signing keys automatically . so yes even if the public key changes , you will be ale to get the current public key when you fetch the metadata correctly .



5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.