It seems like Hasura doesn't support JWT validation for tokens using the ES256 algo, which is what the ALB (Amazon Load Balancer) tokens use.
ALBs use an ES256 JWT and public-key uri https://public-keys.auth.elb.${region}.amazonaws.com/${kid} for validation, whereas Hasura requires a jwk_url.
If that's the case, what are the workarounds? Or is it not possible?
My idea was to create a custom JWT validation Action handler, then funnel all GraphQL requests through it, but that seems hacky. Any ideas?
alexandrim0
commented
3 years ago
It seems like Hasura doesn't support JWT validation for tokens using the
ES256algo, which is what the ALB (Amazon Load Balancer) tokens use.If that's the case, what are the workarounds? Or is it not possible?
My idea was to create a custom JWT validation Action handler, then funnel all GraphQL requests through it, but that seems hacky. Any ideas?