Hi Folks,
I’m having trouble figuring out the purpose behind having a separate client for front-end and backend.
In my flow, I’m getting a token from my frontend public client and then passing on this token to the the backend to fetch APIs. For each API request, the backend simply validates the signature or for online validation calls the userinfo endpoint to check for token validity. I don’t see the purpose of having a separate client for the backend.
Please help me understand this. Sorry for this layman question but having a tough time figuring this out.
Thanks,
Yas