Retrieve JWKS keys.
Operation ID: getJwksUriThe /jwks
endpoint provides a JSON Web Key Set (JWKS) that includes current, past, and future public keys. These keys allow clients to validate the Shopper JSON Web Token (JWT) issued by SLAS, ensuring that no tampering with the token has occurred. Every SLAS JWT that is passed into SLAS, SCAPI, or OCAPI is always validated and is rejected if the signature validation does not match.
To optimize performance, the /jwks
endpoint is limited to 25 calls per minute, so we recommended caching the JWKS keys and refresh them only when necessary, instead of making frequent requests. Typically, the JWKs endpoint can be used once per DAY.
For additional information on using JWKS, see https://developer.salesforce.com/docs/commerce/commerce-api/guide/slas-validate-jwt-with-jwks.html.
curl "https://{shortCode}.api.commercecloud.salesforce.com/shopper/auth/v1/organizations/{organizationId}/oauth2/jwks"
An identifier for the organization the request is being made by
f_ecom_zzxy_prd
The response body containing the JWKS keys was retrieved successfully.
{
"keys": [
{
"crv": "P-256",
"kid": "2d670fa8-0f28-44a1-b8b4-87a6d2feb1d8",
"kty": "EC",
"use": "sig",
"x": "_2tPqxGhgX6cA5Qg7v6UH_9om8OR3-OehkgXXWraTp8",
"y": "DAykmQPtf282buIcL0rLwKYbK6ApgripMjazdAthUFw"
},
{
"crv": "P-256",
"kid": "eb70508f-4d64-46f7-a3d5-b36558d6e6b6",
"kty": "EC",
"use": "sig",
"x": "VV0JVJFhkz71wY0E73Z-snorZ5oJf1QOdkIbCjyMqLs",
"y": "QLkqBVSPPrkd7HjaSEMgMU9Ob-FDpg1W-oLq5I4ExqQ"
},
{
"crv": "P-256",
"kid": "0f2016af-1388-4972-b54d-31cb9e3704ed",
"kty": "EC",
"use": "sig",
"x": "KpmPoZTFXs80Uxy7QcOQ9aaqW35xgT3Qyakee8zR7gA",
"y": "P87TZ52rjnOGlmjaPeUGbLaOqiB7FHnoEzULIw6QlfJ"
}
]
}