What is secret when using RSA keypair

[schowdhury]

Hello, curious what is the "secret" per JWT spec when using RSA keypair

[cpb]

A private key. Check my fork of omniauth-jwt for test cases as examples of how it should behave

…

On Wed., Nov. 20, 2019, 8:20 p.m. Sameer Chowdhury, < ***@***.***> wrote: Hello, curious what is the "secret" per JWT spec when using RSA keypair — You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub <#340?email_source=notifications&email_token=AAACSNRB7LN2VSKRRUTVO6DQUWEX7A5CNFSM4JPYDQP2YY3PNVWWK3TUL52HS4DFUVEXG43VMWVGG33NNVSW45C7NFSM4H23GRGA>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAACSNWGCW3LU6LYWBWW4T3QUWEX7ANCNFSM4JPYDQPQ> .

[cpb]

IE: public key decodes https://github.com/trykinside/omniauth-jwt/blob/master/spec/lib/omniauth/strategies/jwt_spec.rb#L120

private key encodes: https://github.com/trykinside/omniauth-jwt/blob/master/spec/lib/omniauth/strategies/jwt_spec.rb#L102

[cpb]

Or even this very project's readme example specs

ruby-jwt/spec/integration/readme_examples_spec.rb

Lines 32 to 43 in be86168

	it 'RSA' do
	rsa_private = OpenSSL::PKey::RSA.generate 2048
	rsa_public = rsa_private.public_key
	token = JWT.encode payload, rsa_private, 'RS256'
	decoded_token = JWT.decode token, rsa_public, true, algorithm: 'RS256'
	expect(decoded_token).to eq [
	{ 'data' => 'test' },
	{ 'alg' => 'RS256' }
	]
	end

[cpb]

@schowdhury does that help?

[anakinj]

Going to close this one. Lets just open a new issue if there is some need to improve docs.