shreemaan-abhishek opened a new pull request, #13464: URL: https://github.com/apache/apisix/pull/13464
### Description The `/apisix/plugin/jwe/encrypt` endpoint registered by the `jwe-decrypt` plugin was an unfinished dev helper: the IV generation still carried a `-- TODO: random bytes` placeholder and fell back to a fixed value. A gateway should decrypt JWEs, not mint them; token issuance belongs in the service that owns the consumer secret. This PR removes the endpoint, its handler (`gen_token`), and the `jwe_encrypt` helper, and updates docs and tests accordingly. The decrypt path (`_M.rewrite`) is unchanged. Operators who need to generate tokens for testing can mint them offline with any AES-256-GCM library; the updated docs describe the token structure for doing so. Note: this removes a documented endpoint. Deployments that exposed it via the `public-api` plugin to mint tokens at runtime will need to switch to offline token generation. #### Which issue(s) this PR fixes: None ### Checklist - [x] I have explained the need for this PR and the problem it solves - [x] I have explained the changes or the new features added to this PR - [x] I have added tests corresponding to this change - [x] I have updated the documentation to reflect this change - [ ] I have verified that this change is backward compatible (If not, please discuss on the [APISIX mailing list](https://github.com/apache/apisix/tree/master#community) first) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
