mesh icon indicating copy to clipboard operation
mesh copied to clipboard
verified publisher icon gentics

SUP-12299: JWT Options (1.6.x)

Open deckdom opened this issue 3 years ago • 0 comments

For 1.8 changes, see #1408

Abstract

Additional options which will be passed to the JWT service which will be used for signing and validation. Following Options are getting included:

  • Leeway (Time in Seconds how much the expiary may be allowed)
  • Issuer (Name of the Signer/Issuer of the Token)
  • Audience (List of names which are valid targets of the Token)
  • Ignore Expiration (Disable validation of expiration date entirely)

The fields Issuer and Audience are only meta fields and are not actually used in our Validation. It is instead intended for Clients connecting to Mesh to further verify authenticity and/or check for targets.

See previous MR as well: https://github.com/gentics/mesh/pull/1254

Checklist

General

  • [X] Added abstract that describes the change
  • [X] Added changelog entry to /CHANGELOG.adoc
  • [X] Ensured that the change is covered by tests
  • [ ] Ensured that the change is documented in the docs

On API Changes

  • [ ] Checked if the changes are breaking or not
  • [X] Added GraphQL API if applicable (none)
  • [X] Added Elasticsearch mapping if applicable (none)

deckdom avatar Jul 01 '22 12:07 deckdom