Clarify where public and private key are used

This commit is contained in:
Andrew Millington 2018-05-25 11:34:05 +01:00 committed by GitHub
parent 0286160a22
commit 864cc9a65a
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -22,7 +22,7 @@ The repositories are expected to return (on success) instances of [entity interf
## Generating public and private keys ## Generating public and private keys
The public/private key pair is used to sign and verify JWTs tramsitted. To generate the private key run this command on the terminal: The public/private key pair is used to sign and verify JWTs tramsitted. The _Authorization Server_ possesses the public key to sign tokens and the _Resource Server_ possesses the corresponding private key to verify the signatures. To generate the private key run this command on the terminal:
~~~ shell ~~~ shell
openssl genrsa -out private.key 2048 openssl genrsa -out private.key 2048