pokemon/nuzlocke-tracker
1
1
Fork 0
Code Issues Pull Requests 10 Actions Packages Projects Releases Wiki Activity
402 Commits 12 Branches 0 Tags
fd2020ce5024602092b1afe15b5d0a46f4c5b334
Commit Graph

4 Commits

Author SHA1 Message Date
Julian Tabel
e9eccc5b21 feat: migrate JWT verification from HS256 shared secret to JWKS 
Replace symmetric HS256 JWT verification with asymmetric RS256 using JWKS.
Backend now fetches and caches public keys from Supabase's JWKS endpoint
instead of using a shared secret.

- Add cryptography dependency for RS256 support
- Use PyJWKClient to fetch/cache JWKS from {SUPABASE_URL}/.well-known/jwks.json
- Remove SUPABASE_JWT_SECRET from config, docker-compose, deploy workflow, .env
- Update tests to use RS256 tokens with mocked JWKS client

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-03-22 09:24:41 +01:00
Julian Tabel
79ad7b9133 chore: update bean 2026-03-22 09:23:12 +01:00
Julian Tabel
f17687d2fa fix: resolve merge conflict in bean t9aj 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
 2026-03-21 22:50:19 +01:00
Julian Tabel
a12958ae32 update beans and postgres mount path
All checks were successful
CI / backend-tests (push) Successful in 27s
Details
CI / frontend-tests (push) Successful in 29s
Details
2026-03-21 12:51:35 +01:00