Remove the `CLIENTS_SSL_PUBLIC_KEYS_DIR` configuration

Moving forward, each client will advertise it's current JWKs at a known endpoint, and we'll use those, rather than having a configuration that requires manual update of the certificates. This will make it easier to implement key rotation on the clients too.
author: Frederick Muriuki Muriithi 2024-07-19 10:15:53 -0500
committer: Frederick Muriuki Muriithi 2024-07-31 09:30:23 -0500
commit: e18deccab2b891cf7de75690b1054360243b139d (patch)
tree: 0fb816f171d4e5a5f04e8f1e18d09dcace6190d9 /gn_auth/settings.py
parent: 6510dd5175b84c9780dda2fe0d8869efaeb2404b (diff)
download: gn-auth-e18deccab2b891cf7de75690b1054360243b139d.tar.gz
1 files changed, 1 insertions, 2 deletions
diff --git a/gn_auth/settings.py b/gn_auth/settings.py
index e9bfe23..6015560 100644
--- a/gn_auth/settings.py
+++ b/gn_auth/settings.py
@@ -32,8 +32,7 @@ CORS_HEADERS = [
     "Access-Control-Allow-Credentials"
 ]
 
-# OpenSSL keys
-CLIENTS_SSL_PUBLIC_KEYS_DIR = "" # clients' public keys' directory
+# JSON Web Keys (JWKs)
 JWKS_ROTATION_AGE_DAYS = 7 # Days (from creation) to keep a JWK in use.
 JWKS_DELETION_AGE_DAYS = 14 # Days (from creation) to keep a JWK around before deleting it.
author	Frederick Muriuki Muriithi	2024-07-19 10:15:53 -0500
committer	Frederick Muriuki Muriithi	2024-07-31 09:30:23 -0500
commit	e18deccab2b891cf7de75690b1054360243b139d (patch)
tree	0fb816f171d4e5a5f04e8f1e18d09dcace6190d9 /gn_auth/settings.py
parent	6510dd5175b84c9780dda2fe0d8869efaeb2404b (diff)
download	gn-auth-e18deccab2b891cf7de75690b1054360243b139d.tar.gz