headless_lms_server::controllers::main_frontend::oauth::discovery

Function jwks

Source 
pub async fn jwks(
    app_conf: Data<ApplicationConfiguration>,
) -> ControllerResult<HttpResponse>
Expand description

Handles /jwks.json for returning the JSON Web Key Set (JWKS).

This endpoint:

  • Reads the configured ID Token signing public key (RS256).
  • Exposes it in JWKS format for clients to validate ID tokens.

Follows RFC 7517.

Note: Currently exposes a single signing key. Key rotation (OIDC Core §10) is not implemented.

§Example

GET /api/v0/main-frontend/oauth/jwks.json HTTP/1.1

Response:

HTTP/1.1 200 OK
Content-Type: application/json

{
  "keys": [
    { "kty":"RSA","use":"sig","alg":"RS256","kid":"abc123","n":"...","e":"AQAB" }
  ]
}