Access to JKWS public key over public internet or HSCN?

Its all in the title … but if I use the option that I host the JKWS public key has that URL got be a accessible from the public facing internet or can it be restricted to just over HSCN?

Basically where does the request have to be accessible from?

To my knowledge, its up to APIs you may utilize.

I am looking for the partnership with NHS Trust.
Please let me know if that would work to you.

Assuming this is for self-hosting jwks for application restricted APIs

  1. Create a JWKS endpoint to publicly host your public key and note the URL.

Your JWKS will need to be accessible over the public internet