Is there an easier way to get PEM for JWT, I am writing a middleware for my requests, and from the d...

volks_123

04/15/2023, 7:40 PM

Is there an easier way to get PEM for JWT, I am writing a middleware for my requests, and from the docs I need to make a get request to my backend at

auth/jwt/jwk.json

but I am calling this from my backend, so do I have to send a request to localhost? Also, do these keys rotate, do I need to refetch them on every request or can I store them for later use?

volks_123

04/15/2023, 7:40 PM

Copy code

import jwkToPem from 'jwk-to-pem';
import axios from 'axios';
import { exit } from 'process';

async function fetchJWK(): Promise<any> {
    try {
        const response = await axios.get(`http://localhost/auth/jwt/jwks.json`);
        if (response.data.keys.length === 0) {
            console.error('No JWK found');
            exit(1);
        }
        return response.data.keys[0];
    } catch (error) {
        console.error('Error fetching JWK:', error);
        throw error;
    }
}

const jwk = await fetchJWK();
const certString = jwkToPem(jwk);

process.env.JWKCERT = certString;
console.log('CERT String:', certString);

rp_st

04/16/2023, 8:08 AM

The jwks endpoint is exposed by the same api service which has integrated with our backend SDK.

rp_st

04/16/2023, 8:08 AM

So you will need to call that. Also, these keys don’t rotate

rp_st

04/16/2023, 8:09 AM

I would suggest that you use a JWT verification lib instead. That lib also takes care of caching.

2 Views

Previous Next

SuperTokens.com

SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).