feat: switch from RS256 to PS256 for OIDC JWT

worldcoin / developer-portal

The Worldcoin Developer Portal provides tools to interact with the Worldcoin SDK. Easiest way to get started with World ID.

https://developer.worldcoin.org

MIT License

59 stars 31 forks source link

feat: switch from RS256 to PS256 for OIDC JWT #792

Closed 0xPenryn closed 1 week ago

0xPenryn commented 1 week ago

Updates JWTs used in Sign In with World ID to use PS256 instead of RS256 for signing. No changes made to key generation logic, as both RS256 and PS256 use RSA keys. Must be tested in staging before deploying to production.

Not intended to impact Hasura JWT authentication.

penryn-lgtm-bot[bot] commented 1 week ago

lgtm 👍