If you do not want to verify it using the jwks endpoint, you can get the public key and put that as an env var as well: https://supertokens.com/docs/passwordless/common-customizations/sessions/with-jwt/get-public-key