chore: Switch JWT library to use ZIO-JSON instead of Spray JSON

project/Dependencies.scala

@@ -76,7 +76,7 @@ object Dependencies {
     "commons-validator" % "commons-validator" % "1.8.0" exclude ("commons-logging", "commons-logging")
 
   // authentication
-  val jwtSprayJson = "com.github.jwt-scala" %% "jwt-spray-json" % "9.0.2"
+  val jwtSprayJson = "com.github.jwt-scala" %% "jwt-zio-json" % "10.0.0"
   // jwtSprayJson -> 9.0.2 is the latest version that's compatible with spray-json; if it wasn't for spray, this would be Scala 3 compatible
   val springSecurityCore =
     "org.springframework.security" % "spring-security-core" % "6.2.2" exclude ("commons-logging", "commons-logging") exclude ("org.springframework", "spring-aop")

webapi/src/main/scala/org/knora/webapi/routing/JwtService.scala

@@ -10,7 +10,7 @@
 import pdi.jwt.JwtAlgorithm
 import pdi.jwt.JwtClaim
 import pdi.jwt.JwtHeader
-import pdi.jwt.JwtSprayJson
+import pdi.jwt.JwtZIOJson
 import spray.json.JsObject
 import spray.json.JsValue
 import zio.Clock
@@ -113,7 +113,7 @@
                 expiration = Some(exp.getEpochSecond),
                 jwtId = Some(UuidUtil.base64Encode(uuid)),
               ).toJson
-    } yield Jwt(JwtSprayJson.encode(header, claim, jwtConfig.secret, algorithm), exp.getEpochSecond)
+    } yield Jwt(JwtZIOJson.encode(header, claim, jwtConfig.secret, algorithm), exp.getEpochSecond)
 
   /**
    * Validates a JWT, taking the invalidation cache into account. The invalidation cache holds invalidated
@@ -148,7 +148,7 @@
    * @return the token's header and claim, or `None` if the token is invalid.
    */
   private def decodeToken(token: String): Option[(JwtHeader, JwtClaim)] =
-    JwtSprayJson.decodeAll(token, jwtConfig.secret, Seq(JwtAlgorithm.HS256)) match {
+    JwtZIOJson.decodeAll(token, jwtConfig.secret, Seq(JwtAlgorithm.HS256)) match {
       case Success((header: JwtHeader, claim: JwtClaim, _)) =>
         val missingRequiredContent: Boolean = Set(
           header.typ.isDefined,