Can you introspect using a serviceaccount JWT key or only application JWT keys?
Currently writing some middleware that introspects, but additionally does some calls to the management api, which currently means I need to include an application key and a service account key to get both go clients working.
Is this always the case or have I missed something and I can do introspection using a service account key?
1 Reply
Of the top of my head I would say only a "client" can introspect tokens.
@livio might know for sure though