As a developer and an end-user, I want the keys and tokens to be handled correctly.

Required tasks

• JWT: Create a private/public RSA key.
• JWT: JWTs issued by the Auth service should use the private key, and the Resource service should validate using the public key.
• JWT: Different key pairs should be used in development and production.
• Access Token: The token (private-token) used to access the external Image service is provided in your "Secret" project on GitLab.
• Access Token: It is okay to use the same token in development and production environments.
• Do not version control keys and tokens using Git.

Optional tasks

If you complete any additional tasks, create a "Student defined Issue" in this project and include it in the assignment report.