Using Auth0 with multiple clients

[mberrueta]

hello I'm using Auth0 and I have 4 clients and a rails api server

I'm creating from each of the clients, they own jwt token. the thing is when I call the rails API I send the jwt
for instance

{
  "id_token": "xxxxx.xxxxx.xxxxxx",
  "access_token": "yyyyy",
  "token_type": "bearer"
}

but (because each jwt is generated with different client_ids) I'm no able to validate the token using knock.
In rails I'm using they own client_id and secret

There is possible to validate from any of the they? (all same domain)
Shall I override the validation method?

[swilkinson1]

You should be able to do this with a Rails API server and knock if you set the API to use the 'RS256' signing algorithm. Then within the knock config you only need to supply the token audience and the token public key, and aren't dependent on multiple client secrets, since you are now using an asymmetric signing algorithm. #148 shows how can load in the public key in the config file.