Skip to content

TeleTrackingTechnologies/jwks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.github/workflows
.github/workflows
 
 
public
public
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

jwks

Generates a JWKS (JSON Web Key Set) from an RSA key pair and publishes it as a static site via GitHub Pages at /.well-known/jwks.json.

Prerequisites

  • openssl
  • uv (for running the build script via uvx)

Usage

Generate keys and build JWKS

make

This generates private_key.pem and public_key.pem if they don't exist, then writes public/.well-known/jwks.json.

Customize key ID and algorithm

make KID=my-key-1 ALG=RS256

Defaults: KID=epic-test-key-1, ALG=RS384.

Bring your own keys

Place your existing public_key.pem in the repo root, then run:

make jwks

The private key is never required for JWKS generation — only the public key is read.

Other targets

Command Description
make keys Generate RSA key pair only
make jwks Build public/.well-known/jwks.json from existing public key
make show Print current config and file status
make clean Remove generated keys and public/ directory

Deployment

Pushing to main triggers a GitHub Actions workflow that deploys the public/ directory to GitHub Pages. The JWKS endpoint will be available at:

https://<username>.github.io/<repo>/.well-known/jwks.json

Security

  • private_key.pem and public_key.pem are gitignored — never commit them.
  • Only the public key parameters (n, e) are included in the JWKS output.

About

Public JWKS host

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages