refactor: migrate EncryptID URLs from encryptid.jeffemmett.com to auth.ridentity.online

Part of the ridentity.online branding migration. The EncryptID auth
server is now accessible at auth.ridentity.online (with the legacy
encryptid.jeffemmett.com kept as a backward-compatible alias).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

config/encryptid_auth.py

@@ -12,7 +12,7 @@ Usage with Django REST Framework:
         ]
     }
 
-    ENCRYPTID_SERVER_URL = 'https://encryptid.jeffemmett.com'
+    ENCRYPTID_SERVER_URL = 'https://auth.ridentity.online'
     ENCRYPTID_JWT_SECRET = None  # Set for local verification; None = remote verify
 
 Usage standalone (Django middleware):
@@ -109,7 +109,7 @@ def verify_encryptid_token(token: str) -> Optional[dict]:
         return verify_jwt_local(token, secret)
 
     server_url = getattr(
-        settings, 'ENCRYPTID_SERVER_URL', 'https://encryptid.jeffemmett.com'
+        settings, 'ENCRYPTID_SERVER_URL', 'https://auth.ridentity.online'
     )
     return verify_jwt_remote(token, server_url)
 

config/settings.py

@@ -150,7 +150,7 @@ CELERY_BEAT_SCHEDULE = {
 SHARE_BASE_URL = os.environ.get('SHARE_BASE_URL', 'https://rfiles.online')
 
 # EncryptID (passkey auth)
-ENCRYPTID_SERVER_URL = os.environ.get('ENCRYPTID_SERVER_URL', 'https://encryptid.jeffemmett.com')
+ENCRYPTID_SERVER_URL = os.environ.get('ENCRYPTID_SERVER_URL', 'https://auth.ridentity.online')
 ENCRYPTID_JWT_SECRET = os.environ.get('ENCRYPTID_JWT_SECRET', None)  # Set for local JWT verification
 
 # Security (production)

portal/static/portal/encryptid.browser.js

@@ -1,3 +1,3 @@
 /* EncryptID Browser SDK - placeholder
- * TODO: Replace with actual SDK from https://encryptid.jeffemmett.com
+ * TODO: Replace with actual SDK from https://auth.ridentity.online
  */