Use an RSA key for token validation

By default, MK.IO will use a symmetric key for token validation, however, if you wish to use an RSA key for that matter, all you need is to use our API.

MK.IO will need you to add the exponent and modulus fileds that are required RSA parameters.

Below is a sample curl request doing just that with a simple Widevine DRM:

curl --request PUT \
     --url \
     --header 'accept: application/json' \
     --header 'content-type: application/json' \
     --header 'x-mkio-token: " token" \
     --data '
    "properties": {
        "options": [
                "restriction": {
                    "issuer": "issuer",
                    "audience": "audience",
                    "@odata.type": "#Microsoft.Media.ContentKeyPolicyTokenRestriction",
                    "restrictionTokenType": "Jwt",
                    "primaryVerificationKey": {
                        "@odata.type": "#Microsoft.Media.ContentKeyPolicyRsaTokenKey",
                        "modulus": "",
                        "exponent": ""                        
                "configuration": {
                    "@odata.type": "#Microsoft.Media.ContentKeyPolicyWidevineConfiguration",
                    "widevineTemplate": "{}"

The content key policy can then be used when preparing the asset for streaming in the Stream Live and VOD assets section