Librum-Reader / Librum-Server

The Librum server
https://librumreader.com
GNU Affero General Public License v3.0
294 stars 22 forks source link

"JWTValidIssuer" and "JWTKey" #18

Open shahram7 opened 10 months ago

shahram7 commented 10 months ago

Hi there, first of all thank you very much for your time and effort. could you please explain me about the "JWTValidIssuer" and "JWTKey" ? should we use an external service? if yes? which one is suggested? btw it would be great and a lot easier if we could pull the docker image from docker hub : (

i didn't change the JWTValidIssuer and JWTKey

Running in selfhosted mode, skipping AzureKeyVault configuration
warn: Microsoft.EntityFrameworkCore.Model.Validation[10400]
      Sensitive data logging is enabled. Log entries and exception messages may include sensitive application data; this mode should only be enabled during development.
warn: Microsoft.AspNetCore.DataProtection.Repositories.FileSystemXmlRepository[60]
      Storing keys in a directory '/var/lib/librum-server/.aspnet/DataProtection-Keys' that may not be persisted outside of the container. Protected data will be unavailable when container is destroyed. For more information go to https://aka.ms/aspnet/dataprotectionwarning
warn: Microsoft.AspNetCore.DataProtection.KeyManagement.XmlKeyManager[35]
      No XML encryptor configured. Key {34bb44af-cb7e-41fa-8009-ad9fecc6b31f} may be persisted to storage in unencrypted form.
warn: Application.BackgroundServices.DeleteUnconfirmedUsers[0]
      Deleting unconfirmed users
warn: Microsoft.AspNetCore.Server.Kestrel[0]
      Overriding address(es) 'http://*:8080'. Binding to endpoints defined via IConfiguration and/or UseKestrel() instead.
warn: Microsoft.AspNetCore.HttpsPolicy.HttpsRedirectionMiddleware[3]
      Failed to determine the https port for redirect.

Best Regards, Shahram

DavidLazarescu commented 10 months ago

You don't need external services for this. The JWTKey should simply be a long (~35 chars) random string of characters and the issues could e.g. be LibrumServer.

GregTroar commented 10 months ago

Same error here dunno what to do to make it work

paulcsiki commented 1 month ago

I have the following values set on my server:

          env:
            - name: JWTValidIssuer
              value: librum.fqdn
            - name: JWTKey
              value: randomandlongstring