Uploaded image for project: 'UY'
  1. UY
  2. UY-935

OAuth JWT AccessToken support

    Details

    • Type: Task
    • Status: Done
    • Priority: Medium
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: v3.2.0
    • Labels:

      Description

      Allow to configure OAuth AS endpoint to issue JWT encoded access tokens. Conforming to draft RFC https://tools.ietf.org/html/draft-ietf-oauth-access-token-jwt-02

      Access token should be issued in JWT form only if endpoint is configured so or when requested with accepted MIME type.

      JWT token should be usable for authenticating all requests on OAuth endpoint for which bearer token (plain) can be used. oauth-rp authenticator should be able to verify the JWT token. Introspection endpoint should also support its introspection.

      JWT token lifetime shouldn't be auto-enhanced in any way as it is possible for plain AT.

       

      Note - Support for oauth-rp will be tracked separately and if requested.

        Attachments

          Activity

            People

            • Assignee:
              golbi Krzysztof Benedyczak
              Reporter:
              golbi Krzysztof Benedyczak
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: