Introduce an API endpoint to obtain public keys, that can be used to verify access tokens on other services

2025-05-31 14:11:46 +05:30 · 2024-06-14 04:36:49 +02:00
parent 17109f8eb5
commit 2111e1769f
3 changed files with 62 additions and 0 deletions
--- a/api/tests/functional/PublicKeysCest.php
+++ b/api/tests/functional/PublicKeysCest.php
@@ -0,0 +1,23 @@
+<?php
+declare(strict_types=1);
+
+namespace api\tests\functional;
+
+use api\tests\FunctionalTester;
+
+final class PublicKeysCest {
+
+    public function getPublicKeys(FunctionalTester $I): void {
+        $I->sendGet('/api/public-keys');
+        $I->canSeeResponseCodeIs(200);
+        $I->canSeeResponseContainsJson([
+            'keys' => [
+                [
+                    'alg' => 'ES256',
+                    'pem' => "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAES2Pyq9r0CyyviLaWwq0ki5uy8hr/\nZbNO++3j4XP43uLD9/GYkrKGIRl+Hu5HT+LwZvrFcEaVhPk5CvtV4zlYJg==\n-----END PUBLIC KEY-----\n",
+                ],
+            ],
+        ]);
+    }
+
+}