diff --git a/config.py b/config.py
index 9958f6c12..6560eb3d8 100644
--- a/config.py
+++ b/config.py
@@ -304,3 +304,4 @@ class DefaultConfig(object):
 
   # The timeout for service key approval.
   UNAPPROVED_SERVICE_KEY_TTL_SEC = 60 * 60 * 24 # One day
+  KEY_SERVER_AUDIENCE_NAME = 'quay'
diff --git a/endpoints/key_server.py b/endpoints/key_server.py
index 451d8ed15..7f4037117 100644
--- a/endpoints/key_server.py
+++ b/endpoints/key_server.py
@@ -9,13 +9,14 @@ from cryptography.hazmat.backends import default_backend
 import data.model
 import data.model.service_keys
 
+from app import app
 from util.security import strictjwt
 
 
 key_server = Blueprint('key_server', __name__)
 
 JWT_HEADER_NAME = 'Authorization'
-JWT_AUDIENCE = 'quay'
+JWT_AUDIENCE = app.config['KEY_SERVER_AUDIENCE_NAME']
 
 
 def _validate_jwk(jwk, kid):