This hosts the public key that is used for verifying access tokens.
curl https://api.workos.com/sso/jwks/client_123456789
https://api.workos.com/sso/jwks/client_123456789
| curl https://api.workos.com/sso/jwks/client_123456789 |
| import { WorkOS } from '@workos-inc/node'; | |
| const workos = new WorkOS('sk_test_123'); | |
| const jwksUrl = workos.userManagement.getJwksUrl('client_123456789'); |
| require "workos" | |
| WorkOS.configure do |config| | |
| config.key = "sk_example_123456789" | |
| end | |
| jwks_url = WorkOS::UserManagement.get_jwks_url("client_123456789") |
| from workos import WorkOSClient | |
| workos_client = WorkOSClient( | |
| api_key="sk_example_123456789", client_id="client_123456789" | |
| ) | |
| jwks_url = workos_client.user_management.get_jwks_url() |
| package main | |
| import ( | |
| "github.com/workos/workos-go/v2/pkg/usermanagement" | |
| ) | |
| func main() { | |
| usermanagement.SetAPIKey( | |
| "sk_example_123456789", | |
| ) | |
| jwksUrl, err := usermanagement.GetJWKSURL("client_123456789") | |
| } |
| <?php | |
| WorkOS\WorkOS::setApiKey("sk_example_123456789"); | |
| $userManagement = new WorkOS\UserManagement(); | |
| $jwksUrl = $userManagement->getJwksUrl("client_123456789"); |
| import com.workos.WorkOS; | |
| WorkOS workos = new WorkOS("sk_example_123456789"); | |
| String jwksUrl = workos.userManagement.getJwksUrl("client_123456789"); |
| https://api.workos.com/sso/jwks/client_123456789 |
GET/ssoReturns The access token that is returned in successful authentication responses is a JWT that can be used to verify that a user has an active session. The JWT is signed by a JWKS which can be retrieved from the WorkOS API.
{ "iss": "https://api.workos.com", "sub": "user_01HBEQKA6K4QJAS93VPE39W1JT", "client_id": "client_123456789", "act": { "sub": "admin@foocorp.com" }, "org_id": "org_01HRDMC6CM357W30QMHMQ96Q0S", "role": "member", "roles": ["member"], "permissions": ["posts:read", "posts:write"], "entitlements": ["audit-logs"], "feature_flags": ["advanced-analytics"], "sid": "session_01HQSXZGF8FHF7A9ZZFCW4387R", "jti": "01HQSXZXPPFPKMDD32RKTFY6PV", "exp": 1709193857, "iat": 1709193557 }
Access Token JWTThe refresh token can be used to obtain a new access token using the authenticate with refresh token endpoint. Refresh tokens may only be used once. Refreshes will succeed as long as the user’s session is still active.