我可以使用Web App的私钥证书来签署JWT吗? [英] Can I use the Private Key Certificate of Web App to sign JWT?

问题描述

我正在为Chrome浏览器开发Push Notification Server.在Google Cloud Console上，我已将应用程序注册为Web应用程序，并下载了私钥证书.我可以使用此证书来签署JWT请求吗?

I am developing Push Notification Server for Chrome browser. On Google Cloud Console I have registered my application as web application and downloaded the private key Certificate. Can I use this certificate to sign the JWT request?

推荐答案

可以，但是出于多种目的共享私钥通常不是一个好主意.

You can, but it's generally not a good idea to share the private key for multiple purposes.

从Microsoft( http://technet.microsoft.com/zh-CN /library/hh341466.aspx ):

From Microsoft (http://technet.microsoft.com/en-us/library/hh341466.aspx):

不出于多种目的共享私有密钥是一种公共密钥基础结构(PKI)最佳实践.因此，请勿将您在联合服务器上安装的服务通信证书用作令牌签名证书.

It is a public key infrastructure (PKI) best practice to not share the private key for >multiple purposes. Therefore, do not use the service communication certificate that you >installed on the federation server as the token-signing certificate.

这篇关于我可以使用Web App的私钥证书来签署JWT吗?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！