Broken Tokens

/pubkey.pem gives us the public key for JWT

Don't even need to read the source lol

Log in as guest to get jwt token, use jwt_tool to resign with pubkey

Set auth to admin

Get flag

Flag: flag{1n53cur3_tok3n5_5474212}