Skip to content

Fix JWT verification to EdDSA and add sub-account message visibility#30

Merged
markmnl merged 2 commits into
mainfrom
fix/eddsa-auth-and-subaccount-visibility
Jul 8, 2026
Merged

Fix JWT verification to EdDSA and add sub-account message visibility#30
markmnl merged 2 commits into
mainfrom
fix/eddsa-auth-and-subaccount-visibility

Conversation

@markmnl

@markmnl markmnl commented Jul 8, 2026

Copy link
Copy Markdown
Owner

The RS256 rework in #24 assumed a switch to an RSA-based IdP that never happened; restore EdDSA verification and make audience optional.

Also implement the visibility model the sub-account feature was built for: an owner sees their own messages plus their derived sub-accounts', while a sub-account (via its own API-key token or the owner's X-FMSG-Act-As) still sees only itself. Write paths are unchanged.

markmnl and others added 2 commits July 3, 2026 00:18
The RS256 rework in #24 assumed a switch to an RSA-based IdP that never
happened; idp.fmsg.io signs EdDSA (Ed25519) tokens with the address in
`sub` and no `aud` claim, so HEAD would reject every real login. Restore
EdDSA verification and make audience optional to match reality.

Also implement the visibility model the sub-account feature was built
for: an owner sees their own messages plus their derived sub-accounts',
while a sub-account (via its own API-key token or the owner's
X-FMSG-Act-As) still sees only itself. Write paths are unchanged.

Co-Authored-By: Claude Sonnet 5 <[email protected]>
@markmnl markmnl merged commit fb14794 into main Jul 8, 2026
1 check passed
@markmnl markmnl deleted the fix/eddsa-auth-and-subaccount-visibility branch July 8, 2026 12:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant