postman.hubat.net. Having that, the following redirect has to be executed:
redirectas a query parameter named
tokenquery parameter appended and containing a RS256-signed JWT token, e.g.:
applicationVersionis the version of the app that generated the token
applicationis the application id that generated the token, it must match the application that requested the application token
iss(issuer) is the address of the PDA that has created the token and that you should be logging in
exp(expiry) Unix timestamp the token was created, defining whether the token is still valid
iat(issued at time) Unix timestamp the token was issued, used to calculate if 30 days have lapsed since the time the token was first issued
/publickeyendpoint of the PDA (e.g.
https://postman.hubat.net/publickey). The precise handling of tokens with asymmetric keys will depend on your library; however you need to make sure that your library supports RS256 keys.