Interface AgentRequestSigningOperationOverrides

AdCP operation names to sign regardless of the seller's advertisement. Useful during pilots before a counterparty flips an op into required_for.

When true, also sign operations the seller lists in supported_for (but not required_for). Defaults to false — conservative "sign what the seller asks for" behavior.

Informational mirror of the JWKS endpoint where this agent publishes its verification keys. Verifiers do not read this field — they walk brand.json from agent_url to discover the authoritative jwks_uri. The field is carried on the buyer-side config so audit logs, custom verifier wiring, and split-domain setups have a single self-describing source of truth that matches what brand.json publishes.

Common case: split-domain setups where the JWKS lives off the conventional ${agent_url}/.well-known/jwks.json path (identity domain separate from the agent endpoint). Make sure brand.json's jwks_uri agrees with whatever you set here — brand.json is authoritative; this field documents intent.