Giters

direisc / oak-jwks

Generate and management keys as JWK, and auto rotate keys.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

OAK - JSON Web Key Store (JWKS)

Generate and management keys as JWK, and auto rotate keys.

Scope - Management Essencial

  • request new cert (key)
  • delete key
  • delete all keys
  • get public keys (JWKS / PEM)
  • get private keys (JWKS / PEM)

Scope - Management Rotation and expiration

  • don't fetch expired tokens
  • request new key with rotate config
  • schedule for rotate new keys

Use

Almost all routes need to be internal.

Only JWKS URI need to be exposed to public GET {domain}/certs, default return is JWKS.

If need certs in PEM format, can be called GET {domain}/certs?type=PEM.

Test

Project have jest configured with coverage, for run execute: pnpm test

Jest create folder named .coverage with all issues for test coverage.

Run

First install dependencies of project with pnpm i

Second run this command for execute local instance pnpm dev

Now API running on http://localhost:3000/

Samples for usage

# get public certs
curl localhost:3000/certs

# get private certs (not exposed to web)
curl localhost:3000/certs/private

# generate new key
curl -X POST localhost:3000/certs -H 'Content-Type: application/json' -d '{"alg":"RSA"}'

About

Generate and management keys as JWK, and auto rotate keys.

License:MIT License

Languages

Language:TypeScript 98.8%Language:Shell 1.2%