fix(official-bots): configure JWT verification (#72)

The official-bots service enabled smallrye-jwt but never set mp.jwt.verify.publickey.location or issuer, so it could not validate any incoming token and rejected every authenticated request with 401. Add the verify public key (issuer nowchess) mirroring tournament/core, and ship keys/public.pem from the shared keypair. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> Reviewed-on: #72
2026-06-17 09:10:01 +02:00
parent 9e800ecb59
commit 98c64fc0d5
2 changed files with 15 additions and 0 deletions
@@ -12,6 +12,12 @@ quarkus:
    enabled: true
  log:
    level: INFO
+  mp:
+    jwt:
+      verify:
+        publickey:
+          location: ${JWT_PUBLIC_KEY_PATH:keys/public.pem}
+        issuer: nowchess

 nowchess:
  redis: