Updated auth to use generated keys

2024-01-29 21:24:10 -05:00
parent f2acb585c0
commit 4609be84a8
19 changed files with 213 additions and 87 deletions
--- a/README.md
+++ b/README.md
@@ -68,4 +68,9 @@ The application can also be tested from within a Docker container:
 ```
 docker build -t siren:latest .
 docker run --env-file .env -it --rm --name siren siren:latest
-```
+```
+
+### Authentication
+The Siren service uses a JWT/session based authentication system, in that JWT tokens are issued and used, but a state is also kept server-side. This is to allow for the ability to revoke and expire tokens, as well as to allow for the ability to have multiple tokens per user.
+
+Public/Private keys can be generated with `make generate`. These keys should be located within a `/keys` directory in the root of the project.