Generate key pair for signing access tokens
-------------------------------------------

The public/private key pair is used to sign and verify JWTs (access tokens) transmitted.
A valid key pair must be generated to enable FSM REST API.

The private key must be kept secret (i.e. out of the web root of the authorization server).
The authorization server also requires the public key.
The passphrase that has been used to generate private key must be provided to the authorization server.
The public key should be distributed to any services (for example resource servers) that validate access tokens.


Create keys with openssl:
-------------------------

openssl genrsa -passout pass:_passphrase_ -out private.key 2048

Then extract the public key from the private key:

openssl rsa -in private.key -passin pass:_passphrase_ -pubout -out public.key


Rename .htaccess / web.config files:
------------------------------------

Depending on the web server rename the delivered .htaccess.dist file or web.config.dist file resp.
For a web server that supports .htaccess configuration files rename .htaccess.dist to .htaccess
The file web.config.dist should be renamed to web.config if you are using an Internet Information Server (IIS)

The .dist files to rename are located in these directories:

./
./auth
./dfmclient
./dfmserver
./vendor/V2

