Get public keys for JWT verification in JWK Set format

GET

/.well-known/jwks.json

Nhost Authentication API Server

Retrieve the JSON Web Key Set (JWKS) containing public keys used to verify JWT signatures. This endpoint is used by clients to validate access tokens.

Responses

200

The public keys in JWK Set format

JSON Web Key Set for verifying JWT signatures

object

keys

required

Array of public keys

Array<object>

JSON Web Key for JWT verification

object

alg

required

Algorithm used with this key

string

Example

RS256

required

RSA public exponent

string

Example

AQAB

kid

required

Key ID

string

Example

key-id-1

kty

required

Key type

string

Example

RSA

required

RSA modulus

string

Example

abcd1234...

use

required

Key usage

string

Example

sig

default

An error occurred while processing the request

Standardized error response

object

status

required

HTTP status error code

integer

Example

message

required

Human-friendly error message

string

Example

Invalid email format

error

required

Error code identifying the specific application error

string

Allowed values: default-role-must-be-in-allowed-roles disabled-endpoint disabled-user email-already-in-use email-already-verified forbidden-anonymous internal-server-error invalid-email-password invalid-request locale-not-allowed password-too-short password-in-hibp-database redirectTo-not-allowed role-not-allowed signup-disabled unverified-user user-not-anonymous invalid-pat invalid-refresh-token invalid-ticket disabled-mfa-totp no-totp-secret invalid-totp mfa-type-not-found totp-already-active invalid-state oauth-token-echange-failed oauth-profile-fetch-failed oauth-provider-error invalid-otp cannot-send-sms provider-account-already-linked