malpercio.dev / ezpds
An easy-to-host PDS on the ATProtocol, MacOS. Grandma-approved.
fork atom

feat(relay): load OAuth signing key at startup and wire into AppState

malpercio.dev b853a936 c44a7ecc

+14
+14
crates/relay/src/main.rs
··· 101 101 ) 102 102 })?; 103 103 104 + let oauth_signing_keypair = 105 + auth::load_or_create_oauth_signing_key( 106 + &pool, 107 + config.signing_key_master_key.as_ref().map(|s| &*s.0), 108 + ) 109 + .await 110 + .map_err(|e| { 111 + tracing::error!(error = %e, "fatal: failed to load OAuth signing key"); 112 + e 113 + }) 114 + .with_context(|| "failed to load or create OAuth signing keypair")?; 115 + 104 116 let http_client = Client::builder() 105 117 .timeout(std::time::Duration::from_secs(10)) 106 118 .build() ··· 137 149 txt_resolver, 138 150 well_known_resolver, 139 151 jwt_secret, 152 + oauth_signing_keypair, 153 + dpop_nonces: auth::new_nonce_store(), 140 154 }; 141 155 142 156 let listener = tokio::net::TcpListener::bind(&addr)