Ho Ngoc Hai 6afe4fd626 feat(auth): implement dual-key JWT verification for zero-downtime rotation ...

Add JWT_SECRET_NEXT env var support for seamless JWT secret rotation:

- JwtStrategy: use secretOrKeyProvider to try primary then fallback key
- TokenService.verifyAccessToken(): dual-key fallback for internal callers
- Redis metric jwt_verify_with_next_total for monitoring cut-over progress
- Session revocation marker support restored in JwtStrategy.validate()
- Unit tests for all three verification scenarios (primary, fallback, both-fail)
- docs/security/secret-rotation.md runbook with step-by-step rotation procedure

Closes GOO-203.

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-04-24 12:08:34 +07:00

..

src

feat(auth): implement dual-key JWT verification for zero-downtime rotation

2026-04-24 12:08:34 +07:00

docker-entrypoint.sh

feat(devops): improve multi-stage production Dockerfile for NestJS API

2026-04-09 01:23:06 +07:00

Dockerfile

fix: API Dockerfile — include mcp-servers workspace lib in production

2026-04-14 14:57:59 +07:00

nest-cli.json

feat: scaffold monorepo with Turborepo + NestJS + Next.js

2026-04-07 23:52:33 +07:00

package.json

feat(listings): rate limit feature-listing via @nestjs/throttler (TEC-2930)

2026-04-20 08:31:26 +07:00

tsconfig.json

feat: upgrade major dependencies to latest versions

2026-04-08 13:15:36 +07:00

vitest.config.ts

fix(auth): use env-configurable bcrypt rounds to prevent test timeout

2026-04-10 23:26:43 +07:00

vitest.integration.config.ts

feat(auth): implement Auth module with register, login, JWT, guards, and CQRS

2026-04-08 00:24:42 +07:00