For signature validation of JWTs, you need to add the public certificate of the Identity Provider to the truststore of the API Microgateway. Follow the steps given below to import the certificate.
Convert the public certificate to a PEM format. For example,
Import the certificate to the truststore. The
ballerinaTruststore.p12resides in the generated distribution of the API Microgateway at
Use the keytool that comes in JDK 8u60 or later.
certificateAliasconfiguration in the
micro-gw.conffile residing in the
wso2carbonjwt, which is also used in step 2.