Change our jwt signing key to actually be self signed.

2016-05-23 15:07:33 -04:00 · 2016-05-23 15:07:33 -04:00 · 17536e66dc
commit 17536e66dc
parent 4266ae7ce5
4 changed files with 46 additions and 81 deletions
--- a/config.py
+++ b/config.py
@ -259,7 +259,7 @@ class DefaultConfig(object):
  JWT_AUTH_MAX_FRESH_S = 60 * 60 + 60  # At most signed for one hour, accounting for clock skew
  JWT_AUTH_TOKEN_ISSUER = 'quay-test-issuer'
  JWT_AUTH_CERTIFICATE_PATH = 'conf/selfsigned/jwt.crt'
-  JWT_AUTH_PRIVATE_KEY_PATH = 'conf/selfsigned/jwt.key.insecure'
+  JWT_AUTH_PRIVATE_KEY_PATH = 'conf/selfsigned/jwt.key'

  # The URL endpoint to which we redirect OAuth when generating a token locally.
  LOCAL_OAUTH_HANDLER = '/oauth/localapp'