a collection of lightweight TypeScript packages for AT Protocol, the protocol powering Bluesky
atproto bluesky typescript npm
101
fork

Configure Feed

Select the types of activity you want to include in your feed.

docs(oauth-browser-client): document jwks_uri response

Mary 947afc7c aecd964d

+22 -1
+22 -1
packages/oauth/browser-client/README.md
··· 253 253 "redirect_uris": ["https://example.com/oauth/callback"], 254 254 "scope": "atproto transition:generic", 255 255 "token_endpoint_auth_method": "private_key_jwt", 256 + "token_endpoint_auth_signing_alg": "ES256", 256 257 "jwks_uri": "https://example.com/oauth-jwks.json" 257 258 } 258 259 ``` 259 260 260 - the `jwks_uri` should expose the public keys used to sign client assertions. 261 + the `jwks_uri` should expose the public keys used to sign client assertions. it should return a JSON 262 + Web Key Set (JWKS) document: 263 + 264 + ```json 265 + { 266 + "keys": [ 267 + { 268 + "kty": "EC", 269 + "crv": "P-256", 270 + "x": "base64url-encoded-x-coordinate", 271 + "y": "base64url-encoded-y-coordinate", 272 + "use": "sig", 273 + "kid": "key-identifier", 274 + "alg": "ES256" 275 + } 276 + ] 277 + } 278 + ``` 279 + 280 + the public keys in the JWKS must correspond to the private keys your backend uses to sign client 281 + assertions. multiple keys can be listed to support key rotation. 261 282 262 283 ## additional guide 263 284