1
0

refactor(security): migrate from jws to jwe

Signed-off-by: Alan Brault <alan.brault@visus.io>
This commit is contained in:
2026-03-28 07:47:24 -04:00
parent 756a80c5b9
commit 7c742fca14
4 changed files with 18 additions and 21 deletions
+6 -6
View File
@@ -12,12 +12,12 @@
MONGODB_URI=mongodb://localhost:27017/kotlin-api
# ════════════════════════════════════════════════════════════════════════════════
# JWT Security Configuration
# JWT Security Configuration (JWE - JSON Web Encryption)
# ════════════════════════════════════════════════════════════════════════════════
# REQUIRED: Generate a secure base64-encoded secret for JWT token signing
# MUST be base64-encoded (your code uses Decoders.BASE64.decode)
# REQUIRED: Generate a secure base64-encoded secret for JWT token encryption
# MUST be exactly 32 bytes when base64-decoded (for AES-256-GCM encryption)
#
# Generate a secure base64-encoded secret (single line, no newlines):
# openssl rand -base64 64 | tr -d '\n'
# Generate a secure 32-byte base64-encoded encryption secret (single line, no newlines):
# openssl rand -base64 32 | tr -d '\n'
#
JWT_SECRET=your-base64-encoded-secret-here
JWT_ENCRYPTION_SECRET=your-base64-encoded-32-byte-secret-here