I’ve modified JWT AuthProvider to allow overriding of Auth Keys per request by overriding GetRuntimeConfig() in your AppHost in this commit where you can override the AuthKey that’s used for the request with something like:
public override T GetRuntimeConfig<T>(IRequest req, string name, T defaultValue)
{
if (name == nameof(JwtAuthProvider.AuthKey))
{
byte[] tenantAuthKey = ...;
return (T)(object)tenantAuthKey;
}
return defaultValue;
}
This change is available from ServiceStack v5 that’s now available on MyGet, please review the v5 changes before upgrading.