Hello,
Does anyone know what happens if the User who generated the JWT Token for our application was removed from the client's account? WIll that JWT token stop giving us access?
Thank you!
In that case, any JWT token associated with that user will be revoked/deleted. Authenticate an app with those JWT tokens will simply fail.
Is there a way to create a token which is not tied to a specific user if our application requires it?
Thank you!
Unfortunately no. A JWT token represents a particular user, and it is for authenticating that user to get an access token. In RingCentral platform, an access token is generated for an extension with the access right within the user role. Thus, there is no generic JWT token.
So the only "solution" to this would be to create a "user" that is not actually a person so that it would never be necessary to disable that "user" for security reasons if that person were to leave the company?
Thank you!
10 People are following this question.
