Community & SupportDashboard

Use an RSA key for token validation

Suggest Edits

By default, MK.IO will use a symmetric key for token validation, however, if you wish to use an RSA key for that matter, all you need is to use our API.

MK.IO will need you to add the exponent and modulus fileds that are required RSA parameters.

Below is a sample curl request doing just that with a simple Widevine DRM: 

curl --request PUT \
     --url https://api.io.mediakind.com/api/ams/project_name/contentKeyPolicies/policy_name \
     --header 'accept: application/json' \
     --header 'content-type: application/json' \
     --header 'x-mkio-token: "mk.io token" \
     --data '
{
    "properties": {
        "options": [
            {
                "restriction": {
                    "issuer": "issuer",
                    "audience": "audience",
                    "@odata.type": "#Microsoft.Media.ContentKeyPolicyTokenRestriction",
                    "restrictionTokenType": "Jwt",
                    "primaryVerificationKey": {
                        "@odata.type": "#Microsoft.Media.ContentKeyPolicyRsaTokenKey",
                        "modulus": "",
                        "exponent": ""                        
                    }
                },
                "configuration": {
                    "@odata.type": "#Microsoft.Media.ContentKeyPolicyWidevineConfiguration",
                    "widevineTemplate": "{}"
                }
            }
        ]
    }
}
'

The content key policy can then be used in when preparing the asset for streaming in the Stream Live and VOD assets section

Updated about 22 hours ago