Ory is the largest open source community in the world for cloud software application security. We maintain advanced open source security software solving authentication, authorization, access control, application network security, and delegation. Ory implements a variety of industry and best-practice standards including OAuth 2.0 / OAuth 2.1, OpenID Connect, Zero Trust Networking, Google Zanzibar Policy Framework, FIDO2 U2F, WebAuthn, TOTP, and more.

Ory Community

Hey all, I have a general question about Oathkeeper.  I am wondering if Oathkeeper Api exposes a JWKS endpoint at all when providing a custom JWKS file when using the Oathkeeper Helm chart.  In the Oathkeeper Helm Chart, when setting the `Oathkeeper.oathkeeper.config.jwt.jwks_urls` array and using a file input `file:///etc/authenticator/authenticator.jwt.jwks.json` , does Oathkeeper expose this via the Oathkeeper `api` such that is it accessible?  For example, would it serve it at the `Oathkeeper.serve.api.host`/ `.well-known/jwks.json` or does it generate a different endpoint, or does it generate an endpoint to serve this file at all?