Good article @oktadev-blog. I like to use below mechanism to get SigningKeys from WellKnownEndPoint
var signingKeys = discoveryDocument.SigningKeys;
This code is in my Startup.cs file.
What will happen when SigningKeys change? Will my Token Validation all fail and will I have to restart my API in Production? That will be undesirable. Is the solution then to disable the SigningKeys completely?