[KNOX-2703] Make acceptable JWT types configurable - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Critical
Resolution: Fixed
Affects Version/s: 1.6.0, 1.6.1, 1.6.2
Fix Version/s: 2.0.0
Component/s: Server
Labels:
None

Description

With ~~KNOX-2149~~, one can define their own JWKS URL which Knox can use for verification.

However, the current implementation only supports JWTs with "typ: JWT" in their headers (or not type definition at all). In previous JOSE versions, there were other supported types such as at+jwt.

It'd be beneficial to have the list of allowed JWT types defined on the topology level. If not defined, Knox should use the current default (JWT).

Attachments

Issue Links

links to

GitHub Pull Request #532

Activity

People

Assignee:: Sandor Molnar

Reporter:: Sandor Molnar

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 17/Jan/22 13:42

Updated:: 18/Jan/22 18:37

Resolved:: 18/Jan/22 18:37

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

50m