Validating RS256-signed JWT in Azure API Management without an Open ID Connect configuration endpoint.

What a long blog title 🙂 Today, I've encountered an issue while using the validate-jwt policy in Azure API Management.  Let's have a look at it and let me explain how I worked around it. The scenario For a proof of concept, I had to integrate Azure API Management with a custom SSO implementation.  The custom … Continue reading Validating RS256-signed JWT in Azure API Management without an Open ID Connect configuration endpoint.