Different keypair for token based login

2024-11-10 08:57:25 +01:00 · 2022-07-13 15:04:11 +02:00 · 2022-07-13 15:04:11 +02:00 · f0530f2908
commit f0530f2908
parent 187d6a1844
1 changed files with 13 additions and 3 deletions
--- a/internal/auth/jwt.go
+++ b/internal/auth/jwt.go
@ -20,9 +20,10 @@ type JWTAuthConfig struct {
 }

 type JWTAuthenticator struct {
-	auth       *Authentication
-	publicKey  ed25519.PublicKey
-	privateKey ed25519.PrivateKey
+	auth           *Authentication
+	publicKey      ed25519.PublicKey
+	loginPublicKey ed25519.PublicKey
+	privateKey     ed25519.PrivateKey

 	config *JWTAuthConfig
 }
@ -42,6 +43,7 @@ func (ja *JWTAuthenticator) Init(auth *Authentication, conf interface{}) error {
 			return err
 		}
 		ja.publicKey = ed25519.PublicKey(bytes)
+		ja.loginPublicKey = ja.publicKey
 		bytes, err = base64.StdEncoding.DecodeString(privKey)
 		if err != nil {
 			return err
@ -49,6 +51,14 @@ func (ja *JWTAuthenticator) Init(auth *Authentication, conf interface{}) error {
 		ja.privateKey = ed25519.PrivateKey(bytes)
 	}

+	if pubKey = os.Getenv("CROSS_LOGIN_JWT_PUBLIC_KEY"); pubKey != "" {
+		bytes, err := base64.StdEncoding.DecodeString(pubKey)
+		if err != nil {
+			return err
+		}
+		ja.loginPublicKey = bytes
+	}
+
 	return nil
 }