Closed nderwin closed 1 year ago
Do you have any reproducer?
Do you have any reproducer?
I'll try to create one and attach here.
Here's a reproducer. Steps to recreate:
./mvnw clean compile quarkus:dev
curl -i -H 'Authorization: Bearer <token>
http://localhost:8080/hello - an example token is in the jwt.txt
file in the project rootUser
and MySecuritySetup
classesMight be due to https://github.com/quarkiverse/quarkus-renarde/blob/09c01766e5fe49353b43f1d51b1451ea9cdda27a/deployment/src/main/java/io/quarkiverse/renarde/deployment/RenardeProcessor.java#L190 expecting smallrye.jwt.encrypt.key.location
to be set?
https://github.com/quarkiverse/quarkus-renarde/pull/88 could be a fix, if it doesn't conflict with the project goals.
I have an existing Quarkus project that is set up to use a JWT for securing REST endpoints, configured with
mp.jwt.verify.publickey
andmp.jwt.verify.publickey.algorithm
(it integrates with an existing system that is generating the tokens). I would like to add Renarde to the project for generating a UI for it, however, when thequarkus-renarde
dependency is added, it causes the existing endpoints to fail authentication:Is there any way to configure Renarde to use the existing public key for the un-encrypted JWTs, instead of generating key files and expecting encrypted JWTs?