59d3a53980
- Root .env.example: replace JWT_SECRET/JWT_ALGORITHM with JWT_PUBLIC_KEY, add REDIS_URL - Auth Service .env.example: JWT_PRIVATE_KEY + JWT_PUBLIC_KEY with generation instructions
20 lines
1.0 KiB
Plaintext
20 lines
1.0 KiB
Plaintext
# ── Auth Service ──────────────────────────────────────────────────────────────
|
|
# This file contains env vars specific to the Auth Service.
|
|
# Shared vars (DATABASE_URL, REDIS_URL, etc.) come from the root .env
|
|
# or from docker-compose environment.
|
|
|
|
# ── JWT RS256 Keys ────────────────────────────────────────────────────────────
|
|
# Generate keypair:
|
|
# openssl genpkey -algorithm RSA -out private.pem -pkeyopt rsa_keygen_bits:2048
|
|
# openssl rsa -in private.pem -pubout -out public.pem
|
|
#
|
|
# Paste PEM content with literal \n for newlines:
|
|
# JWT_PRIVATE_KEY=-----BEGIN PRIVATE KEY-----\nMIIEvQ...
|
|
# JWT_PUBLIC_KEY=-----BEGIN PUBLIC KEY-----\nMIIBIj...
|
|
|
|
# PRIVATE KEY — used to SIGN JWTs. NEVER share outside this service.
|
|
JWT_PRIVATE_KEY=
|
|
|
|
# PUBLIC KEY — used to VERIFY JWTs.
|
|
JWT_PUBLIC_KEY=
|