Skip to content

Introduce a new Genetic Oauth2 key Manager #4675

New issue
New issue
Open
wso2/carbon-apimgt
#13576
Open
Introduce a new Genetic Oauth2 key Manager#4675
wso2/carbon-apimgt
#13576
Assignees
dakshina99
Labels
Type/NewFeature
@jan1tha

Description

@jan1tha
jan1tha
opened on Feb 5, 2026

Problem

Currently, users are required to write a custom key manager each time a new key manager is required.

Proposed Solution

Implement a custom Key Manager connector for WSO2 APIM that supports JWT tokens using an Out-of-Band provisioning model.

Manual Provisioning: This is simply "Client Registration" performed out-of-band, as allowed by the spec.
JWT Validation: We are following RFC 7519. The Gateway validates the iss (issuer) and aud (audience) claims to ensure the token belongs to the mapped application.

Alternatives

No response

Version

apim-4.6.0

Metadata

Metadata

Assignees

Labels

Type/NewFeature

Type

No type

Projects

APIM 4.7.0

Status

In Progress

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions