Creates a JWT token verifier backed by a Keycloak realm's JWKS endpoint.
The JWKS keys are fetched lazily on the first verification request and
cached; key rotation is handled automatically by jose.
The verifier extracts the bearer token from the Authorization header,
verifies the JWT signature against the realm's public keys, and validates
the issuer and audience (config.clientId) claims, restricting the accepted
signature algorithm to RS256. Any verification failure returns false
without throwing.
Creates a JWT token verifier backed by a Keycloak realm's JWKS endpoint.
The JWKS keys are fetched lazily on the first verification request and cached; key rotation is handled automatically by
jose.The verifier extracts the bearer token from the
Authorizationheader, verifies the JWT signature against the realm's public keys, and validates the issuer and audience (config.clientId) claims, restricting the accepted signature algorithm toRS256. Any verification failure returnsfalsewithout throwing.