Closed jmartin-sul closed 5 years ago
URL for our JWKS, per amazon docs:
Amazon Cognito generates two RSA key pairs for each user pool. The private key of each pair is used to sign the respective ID token or access token. The public keys are made available at an address in this format:
https://cognito-idp.{region}.amazonaws.com/{userPoolId}/.well-known/jwks.json
https://aws.amazon.com/premiumsupport/knowledge-center/decode-verify-cognito-json-token/
remaining work:
ld4p/trellis-ext-db
docker imageupdated ld4p/trellis-ext-db
image has been pushed to dockerhub.
closed, filed #88 for deploying updated env and image
this requires specifying the URL for the JWKS, see: https://github.com/trellis-ldp/trellis/tree/master/auth/oauth https://github.com/trellis-ldp/trellis/wiki/App-Configuration-Guide
(docs are from base trellis project, but should also apply to trellis-ext-db, the trellis flavor we're currently using)