Specification

Currently, the JWTs are strewn everywhere, wherever it is relevant. This is kind of going against the modular and obvious domain structure we are using. So, all the different kinds of tokens, like claims tokens or identity tokens should all be present in a unified domain. In this case, all the payloads and validation methods can sit inside a directory in the tokens domain.

This will let both PKE and PKCLI to use a unified interface for issuing and validating the token, removing a potential friction point and better organising the code.

Additional context

• Reference src/claims/payloads for a gold standard on achieving this

Tasks

1. Move logic for creating and validating a token to src/tokens/payloads or a similar directory
2. Reference src/claims/payloads for a gold standard