JwtAuthenticateOptions
Defined in: src/http/jwt.ts:9
Options for jwtAuthenticate, configuring JWT Bearer-token validation.
Properties
Section titled “Properties”audience
Section titled “audience”audience: string | string[];Defined in: src/http/jwt.ts:13
The expected aud claim. If an array, tries each audience in order.
domain?
Section titled “domain?”optional domain?: string;Defined in: src/http/jwt.ts:19
AuthContext domain. Default: “jwt”.
issuer
Section titled “issuer”issuer: string;Defined in: src/http/jwt.ts:11
The expected iss claim (also used to discover AS metadata).
jwksUri?
Section titled “jwksUri?”optional jwksUri?: string;Defined in: src/http/jwt.ts:15
Explicit JWKS URI. If omitted, discovered from issuer metadata.
principalClaim?
Section titled “principalClaim?”optional principalClaim?: string;Defined in: src/http/jwt.ts:17
JWT claim to use as the principal. Default: “sub”.