Yes, that's correct. I think it's useful when the client wants to verify that the token was issued by a specific authority. Have you ever used it like this?
We're a place where coders share, stay up-to-date and grow their careers.
We strive for transparency and don't collect excess data.