Trying to validate the JWT from the implicit grant on the client side. Docs say: “The access token is a JWT signed with RS256.”
Using this check:
const isValid = jwt.verify(token, publicKey, { algorithms: ['RS256'] });
Getting an invalid signature error every time. The token payload looks correct. Anyone else hit this with the implicit flow?