curo/Business-Management
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
Business-Management/.env.example
T
curo1305 e2c55556ac Switch JWT signing from HS256 to RS256 (4096-bit RSA) 
- Replace symmetric SECRET_KEY with JWT_PRIVATE_KEY / JWT_PUBLIC_KEY (PEM)
- Add iat claim to every token
- Add expand_newlines validator in config for single-line .env PEM values
- Add scripts/generate_jwt_keys.py key-generation helper
- Update security-auditor agent JWT checklist with RS256 enforcement rules
- Mark RS256 as done in TODO.md

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-13 23:00:35 +02:00

8 lines
304 B
Bash
Raw Permalink Blame History

DATABASE_URL=postgresql+asyncpg://postgres:password@localhost:5432/destroying_sap
CORS_ORIGINS=["http://localhost:5173"]
# RS256 JWT keys — generate with: python scripts/generate_jwt_keys.py
# Paste the output of that script here (single-line PEM with \n escaped)
JWT_PRIVATE_KEY=""
JWT_PUBLIC_KEY=""
Reference in New Issue View Git Blame Copy Permalink