Create JWT Auth PoC with Flask + Authlib

[tomondre]

Description:
Build a minimal, standalone Flask app that verifies JWT tokens using Authlib and protects endpoints via a decorator.

Requirements:

• Use Flask and Authlib only
• Verify token signature and expiration
• Implement decorator for authorization
• Create protected route

Definition of Done:

• Token is extracted and validated correctly
• Unauthorized access returns 401/403
• App is standalone and runnable

[tomondre]

Here is the simplest possible PoC: https://github.com/tomondre/authlib-poc .
It follows the production setup closely:

• uses current_user in the function call after authentication
• uses idp jwk for validation (hardcoded for noe)
• validates jwt based on jwk keys, that are availabile publicly from ESCAPE IAM jwt endpoint

[garciagenrique]

Here is the simplest possible PoC: https://github.com/tomondre/authlib-poc . It follows the production setup closely:

* uses `current_user` in the function call after authentication

* uses idp jwk for validation (hardcoded for noe)

* validates jwt based on jwk keys, that are availabile publicly from ESCAPE IAM jwt endpoint

Thanks @tomondre, please have a look to tomondre/authlib-poc#1 tho