don't need to configure jwt secret key

src/BE/Controllers/Admin/GlobalConfigs/GlobalConfigController.cs

@@ -2,6 +2,7 @@
 using Chats.BE.Controllers.Admin.GlobalConfigs.Dtos;
 using Chats.BE.Controllers.Common;
 using Chats.BE.DB;
+using Chats.BE.Services.Configs;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.EntityFrameworkCore;
 using System.Text.Json;

src/BE/DB/Init/InitService.cs

@@ -23,9 +23,6 @@ public async Task Init(CancellationToken cancellationToken = default)
 
     private static async Task InsertInitialData(IServiceScope scope, ChatsDB db, CancellationToken cancellationToken)
     {
-        JwtKeyManager jwtKeyManager = scope.ServiceProvider.GetRequiredService<JwtKeyManager>();
-        await jwtKeyManager.GetOrCreateSecretKey(cancellationToken);
-
         BasicData.InsertAll(db);
         await db.SaveChangesAsync(cancellationToken);
 

src/BE/Program.cs

@@ -45,7 +45,7 @@ public static async Task Main(string[] args)
         builder.Services.AddSingleton<CsrfTokenService>();
         builder.Services.AddScoped<GlobalDBConfig>();
         builder.Services.AddScoped<UserManager>();
-        builder.Services.AddScoped<JwtKeyManager>();
+        builder.Services.AddSingleton<JwtKeyManager>();
         builder.Services.AddScoped<SessionManager>();
         builder.Services.AddScoped<UserModelManager>();
         builder.Services.AddScoped<OpenAIApiKeySessionManager>();

src/BE/Services/Configs/DBConfigKey.cs

@@ -2,8 +2,6 @@
 
 public static class DBConfigKey
 {
-    public const string JwtSecretKey = "JwtSecretKey";
-
     public const string TencentSms = "tencentSms";
 
     public const string SiteInfo = "siteInfo";

src/BE/Services/Sessions/JwtKeyManager.cs

@@ -1,28 +1,19 @@
-using Chats.BE.DB;
-using Chats.BE.Services.Configs;
-using Microsoft.EntityFrameworkCore;
+namespace Chats.BE.Services.Sessions;
 
-namespace Chats.BE.Services.Sessions;
-
-public class JwtKeyManager(ChatsDB db)
+public class JwtKeyManager
 {
-    public async Task<string> GetOrCreateSecretKey(CancellationToken cancellationToken)
+    public string GetOrCreateSecretKey()
     {
-        // check environment variable first
-        // if it's not set, then generate a new one and store into database
         string? secretKey = Environment.GetEnvironmentVariable("JWT_SECRET_KEY");
-        if (secretKey != null) return secretKey;
-
-        string? configText = await db.Configs
-            .Where(s => s.Key == DBConfigKey.JwtSecretKey)
-            .Select(x => x.Value)
-            .SingleOrDefaultAsync(cancellationToken);
-        if (configText != null) return configText;
-
-        string generated = Guid.NewGuid().ToString();
-        db.Configs.Add(new Config { Key = DBConfigKey.JwtSecretKey, Value = generated, Description = $"Generated at {DateTime.Now:O}" });
-        await db.SaveChangesAsync(cancellationToken);
-
-        return generated;
+        if (secretKey != null)
+        {
+            return secretKey;
+        }
+        else
+        {
+            string generated = Guid.NewGuid().ToString();
+            Environment.SetEnvironmentVariable("JWT_SECRET_KEY", generated);
+            return generated;
+        }
     }
 }

src/BE/Services/Sessions/SessionManager.cs

@@ -13,10 +13,10 @@ public class SessionManager(JwtKeyManager jwtKeyManager)
     private const string ValidAudience = "chats";
     private static readonly TimeSpan ValidPeriod = TimeSpan.FromHours(8);
 
-    public async Task<SessionEntry> GetCachedUserInfoBySession(string jwt, CancellationToken cancellationToken = default)
+    public Task<SessionEntry> GetCachedUserInfoBySession(string jwt, CancellationToken _ = default)
     {
-        ClaimsPrincipal claims = ValidateJwt(jwt, await GetSecurityKey(cancellationToken));
-        return SessionEntry.FromClaims(claims);
+        ClaimsPrincipal claims = ValidateJwt(jwt, GetSecurityKey());
+        return Task.FromResult(SessionEntry.FromClaims(claims));
     }
 
     private static ClaimsPrincipal ValidateJwt(string jwt, SecurityKey signingKey)
@@ -51,11 +51,11 @@ internal static byte[] Pdkdf2StringToByte32(string input)
         return new Rfc2898DeriveBytes(input, salt, 10000, HashAlgorithmName.SHA256).GetBytes(32);
     }
 
-    private async Task<SymmetricSecurityKey> GetSecurityKey(CancellationToken cancellationToken) => new(Pdkdf2StringToByte32(await jwtKeyManager.GetOrCreateSecretKey(cancellationToken)));
+    private SymmetricSecurityKey GetSecurityKey() => new(Pdkdf2StringToByte32(jwtKeyManager.GetOrCreateSecretKey()));
 
-    public async Task<LoginResponse> GenerateSessionForUser(User user, CancellationToken cancellationToken)
+    public Task<LoginResponse> GenerateSessionForUser(User user, CancellationToken _)
     {
-        SigningCredentials cred = new(await GetSecurityKey(cancellationToken), SecurityAlgorithms.HmacSha256);
+        SigningCredentials cred = new(GetSecurityKey(), SecurityAlgorithms.HmacSha256);
         SessionEntry sessionEntry = new()
         {
             UserId = user.Id,
@@ -73,12 +73,12 @@ public async Task<LoginResponse> GenerateSessionForUser(User user, CancellationT
 
         string jwt = new JwtSecurityTokenHandler().WriteToken(token);
         bool hasPayService = false;
-        return new LoginResponse
+        return Task.FromResult(new LoginResponse
         {
             SessionId = jwt,
             UserName = user.DisplayName,
             Role = user.Role,
             CanReCharge = hasPayService,
-        };
+        });
     }
 }

src/FE/types/config.ts

@@ -1,7 +1,6 @@
 export enum GlobalConfigKeys {
   tencentSms = 'tencentSms',
   siteInfo = 'siteInfo',
-  JwtSecretKey = 'JwtSecretKey',
 }
 
 export interface SiteInfoConfig {
@@ -21,5 +20,4 @@ export const GlobalDefaultConfigs = {
     filingNumber: '',
     companyName: '',
   },
-  JwtSecretKey: '',
 };