feat(fullstack): Add JWT validation

legalconsenthub/composables/applicationForm/useApplicationFormApi.ts

@@ -12,7 +12,7 @@ export function useApplicationFormApi() {
   )
 
   const applicationFormApiClient = new ApplicationFormApi(
-    new Configuration({ basePath, headers: { Authorization: jwt.value ?? '' } })
+    new Configuration({ basePath, headers: { Authorization: jwt.value ? `Bearer ${jwt.value}` : '' } })
   )
 
   async function createApplicationForm(

legalconsenthub/composables/applicationFormTemplate/useApplicationFormTemplateApi.ts

@@ -5,12 +5,15 @@ import { cleanDoubleSlashes, withoutTrailingSlash } from 'ufo'
 export function useApplicationFormTemplateApi() {
   const appBaseUrl = useRuntimeConfig().app.baseURL
   const { serverApiBaseUrl, serverApiBasePath, clientProxyBasePath } = useRuntimeConfig().public
+  const { jwt } = useAuth()
 
   const basePath = withoutTrailingSlash(
     cleanDoubleSlashes(import.meta.client ? appBaseUrl + clientProxyBasePath : serverApiBaseUrl + serverApiBasePath)
   )
 
-  const applicationFormApiClient = new ApplicationFormTemplateApi(new Configuration({ basePath }))
+  const applicationFormApiClient = new ApplicationFormTemplateApi(
+    new Configuration({ basePath, headers: { Authorization: jwt.value ? `Bearer ${jwt.value}` : '' } })
+  )
 
   async function createApplicationFormTemplate(
     createApplicationFormDto: CreateApplicationFormDto

legalconsenthub/server/utils/auth.ts

@@ -7,7 +7,17 @@ export const auth = betterAuth({
   database: new Database('./sqlite.db'),
   emailAndPassword: { enabled: true, autoSignIn: false },
   plugins: [
-    jwt(),
+    jwt({
+      jwt: {
+        issuer: 'http://192.168.178.105:3001'
+      },
+      jwks: {
+        keyPairConfig: {
+          // Supported by NimbusJwtDecoder
+          alg: 'ES512'
+        }
+      }
+    }),
     organization({
       async sendInvitationEmail(data) {
         console.log('Sending invitation email', data)