Generate random JWT key

rl-gitpod · rl-gitpod · commit c995ac30ebbb · 2021-05-20T00:46:34.000Z
diff --git a/chart/values.yaml b/chart/values.yaml
@@ -128,7 +128,6 @@ branding:
         url: https://www.gitpod.io/terms/
 workspaceScheduler: workspace-scheduler
 serverProxyApiKey: "fF7+aCPvF9Pa0AEjmoZ+yWVh6PqBjM5VEA0wyQs3FH4="
-oauthServerJWTSecret: "vUmr2mdLwW_.YFCWwFcR*VaUdE9eiA-CMAQuxxUoDPiQ6GVVJbBqBafp"
 previewFeatureFlags: []
 
 components:
@@ -270,7 +269,7 @@ components:
     - "server-proxy-apikey-secret.yaml"
     - "auth-providers-configmap.yaml"
     sessionSecret: Important!Really-Change-This-Key!
-    oauthServerJWTSecret: "Important!Set-by-deployment-yaml" 
+    oauthServerJWTSecret: {{ randAlphaNum 20) | quote }}
     resources:
       cpu: "200m"
     github:
diff --git a/components/server/src/oauth-server/oauth-authorization-server.ts b/components/server/src/oauth-server/oauth-authorization-server.ts
@@ -41,6 +41,7 @@ class GitpodAuthorizationServer extends AuthorizationServer {
 }
 
 export function createAuthorizationServer(authCodeRepository: OAuthAuthCodeRepository, userRepository: OAuthUserRepository, tokenRepository: OAuthTokenRepository, jwtSecret: string): GitpodAuthorizationServer {
+  log.info(`JWT:${jwtSecret}`)
   const authorizationServer = new GitpodAuthorizationServer(
     authCodeRepository,
     clientRepository,

Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,7 @@ class GitpodAuthorizationServer extends AuthorizationServer {`
`41`	`41`	`}`
`42`	`42`
`43`	`43`	`export function createAuthorizationServer(authCodeRepository: OAuthAuthCodeRepository, userRepository: OAuthUserRepository, tokenRepository: OAuthTokenRepository, jwtSecret: string): GitpodAuthorizationServer {`
	`44`	+ log.info(`JWT:${jwtSecret}`)
`44`	`45`	`const authorizationServer = new GitpodAuthorizationServer(`
`45`	`46`	`authCodeRepository,`
`46`	`47`	`clientRepository,`