Running ArgoCD behind a reverse proxy is the standard production setup. Instead of exposing the ArgoCD server directly, you put it behind NGINX, Traefik, HAProxy, or a cloud load balancer that handles ...
validate-jwt policy with remote JWKS. If your JWT validation policy uses an OpenID configuration endpoint, APIM caches the configuration and JWKS keys. It normally does not fetch keys on every request ...