New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Is JWKS public key supported? #7
Comments
I have PRd this functionality to https://github.com/discourse/discourse-omniauth-jwt |
@marcinkoziej Can you possibly help us out? We're trying to implement the same sort of solution you referenced over in the Discourse fork. We have an identity-aware proxy in front of GitLab, and want to use omniauth-jwt (if it's even the right tool for the job) to accept the JWT provided in headers, validating it against a publicly accessible |
does this functionality still not exist? |
@bcg62 This repo hasn't been updated since 2013, so I'd guess not and suggest not holding one's breath. |
Hello!
This omniauth strategy requires a secret to verify signature, but in my JWT setup (I use https://www.ory.sh/oathkeeper/docs/ ) I have JWT tokens which need to be verified with a published JWKS.json.
Is there a way to extract the shared secret from
jwks.json
, or are these two different, incompatible methods?The text was updated successfully, but these errors were encountered: