can only be installed as superuser

[maparent]

The database owner cannot now install the extension ("must be superuser" error message.)
There is nothing that requires this, and it's as simple as adding superuser=false to pgjwt.control.

[steve-chavez]

IIRC, pgcrypto requires superuser and that's listed as a dependency on pgjwt.control.

[maparent]

pgcrypto is a trusted module and does not require superuser permissions to install. It would be nice if pgjwt did not add a new constraint.

[steve-chavez]

pgcrypto is a trusted module

Ah, seems that changed since pg 13, pg 12 and below still require superuser for pgcrypto.

https://www.postgresql.org/docs/12/pgcrypto.html

[maparent]

Ah, fair point! Sorry I missed that. But I think the point stands; even if a superuser had to install pgcrypto, pyjwt does not escalate the pgcrypto permissions.

[michelp]

Sorry for the delay on getting back to you, I've been under a pile of other work and pgjwt languished as a result. @maparent I've sent you an invitation to collaborate on this repo, if you accept feel free to merge both your pull requests if you feel they are the best solution going forward.

[maparent]

Thank you very much!