refactor(security): migrate from jws to jwe
Signed-off-by: Alan Brault <alan.brault@visus.io>
This commit is contained in:
+6
-6
@@ -12,12 +12,12 @@
|
||||
MONGODB_URI=mongodb://localhost:27017/kotlin-api
|
||||
|
||||
# ════════════════════════════════════════════════════════════════════════════════
|
||||
# JWT Security Configuration
|
||||
# JWT Security Configuration (JWE - JSON Web Encryption)
|
||||
# ════════════════════════════════════════════════════════════════════════════════
|
||||
# REQUIRED: Generate a secure base64-encoded secret for JWT token signing
|
||||
# MUST be base64-encoded (your code uses Decoders.BASE64.decode)
|
||||
# REQUIRED: Generate a secure base64-encoded secret for JWT token encryption
|
||||
# MUST be exactly 32 bytes when base64-decoded (for AES-256-GCM encryption)
|
||||
#
|
||||
# Generate a secure base64-encoded secret (single line, no newlines):
|
||||
# openssl rand -base64 64 | tr -d '\n'
|
||||
# Generate a secure 32-byte base64-encoded encryption secret (single line, no newlines):
|
||||
# openssl rand -base64 32 | tr -d '\n'
|
||||
#
|
||||
JWT_SECRET=your-base64-encoded-secret-here
|
||||
JWT_ENCRYPTION_SECRET=your-base64-encoded-32-byte-secret-here
|
||||
|
||||
Reference in New Issue
Block a user