Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Feature request: disable encryption for server-side tokens
See original GitHub issueHello,
First of all let me thank you for all your work and good product!
Do you have any plans to add an option to not use encryption on server-side tokens?
We’re deploying our clusters quite frequently and encryption for tokens isn’t always working for us. We’re trying to avoid node scripts (for our own reasons), and were using openssl script at first, and python script currently. Rarely we have digital envelope routines errors, after token creation, hence the need of regenerating of tokens.
We’re using only server-side tokens. Don’t get me wrong, but I don’t see much sense of using encryption on server-side tokens.
Issue Analytics
- State:
- Created 4 years ago
- Comments:8 (7 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
Yeah it has to be the actual
jwtfor sure. Otherwise signatures could not be checked and I don’t think it would be good to have the app signing jwts either.I’ve got some other PRs to review so I’ll look into this one as well.
Thanks for the interest and kind words! Glad to hear you find the project useful. I had some specific reasons for requiring them to be encrypted even on the server-side but I’ll have to dig through my notes to see if I can find them again. Generally I’m open to not requiring it though. I’ll do some digging and then reach back out.