GC Digital Talent is the new recruitment platform for digital and tech jobs in the Government of Canada. // Talents numériques du GC est la nouvelle plateforme de recrutement pour les emplois numériques et technologiques au gouvernement du Canada.
We're using two JWT management libraries here (Jose & Lcobucci), which each offer different functionality related to constraints and JWKS.
TODO: Consider consolidating into a single library, or migrating to a new
There has been a recent development actually, ♻️ Package web-token/jwt-core is abandoned #9494 .
I think that using a single library is still something we want to do, which would be the AC.
🕵️ Details
Re-ticketed from https://github.com/GCTC-NTGC/gc-digital-talent/pull/2813#discussion_r877400297
Not urgent.
From the code comment that @petertgiles +1'd:
The file in which the new
web-token/jwt-core
will appear: https://github.com/GCTC-NTGC/gc-digital-talent/blob/main/api/app/Services/OpenIdBearerTokenService.phpThe two libraries we're using right now, plus another front-runner: (after merging #2813)
web-token/jwt-core
pkg)bcmath
orgmp
PHP extensionlcobucci/jwt
web-token/jwt-core
firebase/php-jwt
✅ Acceptance Criteria
A set of assumptions which, when tested, verify that the bug was addressed.