What to put for auth.config.ts domain?
If the url for the jwks.json is
https://auth.privy.io/api/v1/apps/<app_id>/jwks.json, what should be the value of domain in auth.config.ts?6 Replies
Thanks for posting in <#1088161997662724167>.
Reminder: If you have a Convex Pro account, use the Convex Dashboard to file support tickets.
- Provide context: What are you trying to achieve, what is the end-user interaction, what are you seeing? (full error message, command output, etc.)
- Use search.convex.dev to search Docs, Stack, and Discord all at once.
- Additionally, you can post your questions in the Convex Community's <#1228095053885476985> channel to receive a response from AI.
- Avoid tagging staff unless specifically instructed.
Thank you!
are you using convex auth? or privy auth with convex db?
Privy auth with convex db, so I'd like to use custom auth integration
that's a surprising url
I'd expect
https://auth.privy.io/BLAH/BLAH/BLAH/.well-known/jwks.json
I'm trying to find docs for Privy but I only see docs about using third pary authI think its not technically using openid connect but I was hoping the signed jwt + jwks.json would allow me to use it with Convex
I could also manually verify the signature (ES256 algorithm) in each query/mutation but how difficult would this be in convex?
You can do that in Convex, ES256 is supported in the Convex JS runtime with
crypto.subtle.importKey https://developer.mozilla.org/en-US/docs/Web/API/SubtleCrypto/importKey
Would love to hear about your use case for this JWT that isn't openid connect, so far we've followed the spec here for the built-in auth and said anything outside of that is something you need to check yourself in each call like you've asked about. Sounds like a community library or blog post could be helpful for dealing with these other auth methods.