In the user dashboard their should be a button that allows an admin to revoke JWT validation access. Basically what can happen is that we can create a new key pair for the public trust certificate that validates the public key that is used to validate the JWT leading to a 401.
In theory this should just kick the user back into the login screen and require them to log back in with their credentials. Thus creating a whole new token, public key, and trust certificate.
Lol this isn't stateless JWT anymore. I'll get around to these issues one day.
In the user dashboard their should be a button that allows an admin to revoke JWT validation access. Basically what can happen is that we can create a new key pair for the public trust certificate that validates the public key that is used to validate the JWT leading to a 401.
In theory this should just kick the user back into the login screen and require them to log back in with their credentials. Thus creating a whole new token, public key, and trust certificate.
Lol this isn't stateless JWT anymore. I'll get around to these issues one day.