refactor jwt secret

2024-10-03 15:37:23 -05:00
parent 058429fff8
commit a95c0ed9b0
3 changed files with 33 additions and 7 deletions
--- a/core/jwt_claims.go
+++ b/core/jwt_claims.go
@@ -4,6 +4,9 @@ import (
 	"errors"
 	"fmt"
 	"github.com/golang-jwt/jwt/v5"
+	"go-nkode/util"
+	"log"
+	"os"
 	"time"
 )

@@ -23,7 +26,20 @@ const (
 	resetNKodeTokenExp = 5 * time.Minute
 )

-var secret = GetJwtSecret("./secrets.json")
+var secret = getJwtSecret()
+
+func getJwtSecret() []byte {
+	jwtSecret := os.Getenv("JWT_SECRET")
+	if jwtSecret == "" {
+		log.Fatal("No JWT_SECRET found")
+	}
+
+	jwtBytes, err := util.ParseHexString(jwtSecret)
+	if err != nil {
+		log.Fatalf("error parsing jwt secret %v", err)
+	}
+	return jwtBytes
+}

 func NewAuthenticationTokens(username string, customerId CustomerId) (AuthenticationTokens, error) {
 	accessClaims := NewAccessClaim(username, customerId)