malpercio.dev / ezpds
An easy-to-host PDS on the ATProtocol, iPhone and MacOS. Maintain control of your keys and data, always.
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

feat(relay): add GET /oauth/jwks endpoint (MM-79) #52

open opened by
malpercio.dev targeting main from malpercio/mm-79-oauth-jwks-endpoint

Summary#

  • Implements GET /oauth/jwks serving the relay's ES256 public key as a JWK Set (RFC 7517)
  • Public endpoint with Cache-Control: public, max-age=3600 — no auth required
  • Ensures kid in JWKS always matches the kid header in issued JWTs

Test plan#

  • cargo test -p relay oauth_jwks — 7 tests all pass
  • curl http://localhost:8080/oauth/jwks returns { "keys": [{ "kty": "EC", "crv": "P-256", "x": "...", "y": "...", "kid": "..." }] }
  • Response includes Cache-Control: public, max-age=3600
  • GET /.well-known/oauth-authorization-server jwks_uri field resolves to this endpoint
Labels

None yet.

assignee

None yet.

Participants 1
AT URI
at://did:web:malpercio.dev/sh.tangled.repo.pull/3mhr7rpf77u22
Diff #0

No differences found between the selected revisions.

History

1 round 0 comments
sign up or login to add to the discussion
malpercio.dev submitted #0
patch application failed: error: No valid patches in input (allow with "--allow-empty")
expand 0 comments