These are chat archives for alvarosanchez/spring-security-rest

Apr 2015
Álvaro Sánchez-Mariscal
Apr 24 2015 12:21
I still don't get the point of setting useEncryptedJwt = false and then specifying private and public keys
first of all, useEncryptedJwt = false is the default value, you don't have to set it
if you want to use signed JWT's, then all the defaults are enough. You just have to change the secret
Lawrence Lee
Apr 24 2015 16:11
So I gathered. Eventually :P The standard warning message threw me off - I thought it was related. If you set the secret then the tokens do remain valid between runs, but you still see the message even though you are not using encryption, which is really confusing