I'm going to build micrservices using Laravel framework. I have users microservice that processes clients credentials and authenticates them (creates JWT for clients). Also, there are another microservices that require user authentication.
And the question is, how can i validate clients access tokens in microservices (except users microservice), if the secret access token key is only in users microservice? Or, should i keep the secret key in each microservice?