I looked into trying to use openssl libraries to do the JWT verification but a lot of them are deprecated and wouldn't install too. I've tried some other libraries that decode and validate JWT's but so far none have worked. An option could be to create a wrapper around the JSONWebToken library but this would involve us maintaining that. Not sure if we want to go that route