🐛 fix(mana-core-auth): use EdDSA for OIDC id_token signing

Set useJWTPlugin: true so id_tokens are signed with EdDSA keys from JWKS instead of HS256. This fixes Synapse OIDC integration which verifies tokens via JWKS endpoint.
2026-05-23 18:26:41 +02:00 · 2026-02-01 13:24:55 +01:00 · 2026-02-01 13:24:55 +01:00 · efb077b9ea
commit efb077b9ea
parent 5c61a4ed0f
22 changed files with 1605 additions and 142 deletions
--- a/services/mana-core-auth/src/app.module.ts
+++ b/services/mana-core-auth/src/app.module.ts
@ -14,6 +14,7 @@ import { HealthModule } from './health/health.module';
 import { MetricsModule } from './metrics';
 import { AnalyticsModule } from './analytics';
 import { HttpExceptionFilter } from './common/filters/http-exception.filter';
+import { LoggerModule } from './common/logger';

@Module({
 	imports: [
@ -27,6 +28,7 @@ import { HttpExceptionFilter } from './common/filters/http-exception.filter';
 				limit: 100, // 100 requests per minute
 			},
 		]),
+		LoggerModule,
 		MetricsModule,
 		AnalyticsModule,
 		AiModule,