You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'd like to use this library to create JWTs, but use an external key management service for signing (so the private key material is never made public).
I don't know what kind of API you might prefer, but a minimal option might be to expose something like:
I don't think we would add something like that. There's no JWT involved there, just some base64 serializing. You can put that snippet in your codebase, add base64 to the deps + b64_encode_part and it's going to work
I'd like to use this library to create JWTs, but use an external key management service for signing (so the private key material is never made public).
I don't know what kind of API you might prefer, but a minimal option might be to expose something like:
and then leave it up to the user to generate everything else with their preferred signing system.
A more extensive change would include an API for calling the external service.
Do you have a preference for a particular approach here?
The text was updated successfully, but these errors were encountered: