Get well knownjwks

cURL

curl --request GET \
  --url https://{projectId}.frontendapi.corbado.io/.well-known/jwks \
  --header 'Authorization: Bearer <token>'

{
  "keys": [
    {
      "alg": "RS256",
      "kty": "RSA",
      "use": "<string>",
      "n": "<string>",
      "e": "<string>",
      "kid": "<string>"
    }
  ]
}

GET

.well-known

jwks

cURL

curl --request GET \
  --url https://{projectId}.frontendapi.corbado.io/.well-known/jwks \
  --header 'Authorization: Bearer <token>'

{
  "keys": [
    {
      "alg": "RS256",
      "kty": "RSA",
      "use": "<string>",
      "n": "<string>",
      "e": "<string>",
      "kid": "<string>"
    }
  ]
}

Authorizations

Authorization

string

header

required

After a user logs in successfully, a session is created and a JWT token is returned. This token represents the user's authenticated session. It must be included in the Authorization header as a Bearer token for all protected endpoints:

Authorization: Bearer <your-token>

The server will validate this token to authorize access.

Response

JWKS successfully retrieved

keys

object[]

required

Show child attributes

keys.alg

string

required

The specific cryptographic algorithm used with the key

Example:

"RS256"

keys.kty

string

required

The family of cryptographic algorithms used with the key

Example:

"RSA"

keys.use

string

required

How the key was meant to be used; sig represents the signature

keys.n

string

required

The modulus for the RSA public key

keys.e

string

required

The exponent for the RSA public key

keys.kid

string

required

The unique identifier for the key

Get well knownapple app site association List users

⌘I

API Reference

Frontend API

Backend API

Authorizations

Response