KAFKA-13730: OAuth access token validation fails if it does not contain the "sub" claim (#11886)
Removes the requirement of presence of sub claim in JWT access tokens, when clients authenticate via OAuth. This does not interfere with OAuth specifications and is to ensure wider compatibility with OAuth providers. Unit test added. Reviewers: Kirk True <ktrue@confluent.io>, Viktor Somogyi-Vass <viktorsomogyi@gmail.com>, Manikumar Reddy <manikumar.reddy@gmail.com>
显示
- clients/src/main/java/org/apache/kafka/common/security/oauthbearer/secured/ValidatorAccessTokenValidator.java 0 个添加, 1 个删除...ty/oauthbearer/secured/ValidatorAccessTokenValidator.java
- clients/src/test/java/org/apache/kafka/common/security/oauthbearer/secured/AccessTokenBuilder.java 23 个添加, 1 个删除...mmon/security/oauthbearer/secured/AccessTokenBuilder.java
- clients/src/test/java/org/apache/kafka/common/security/oauthbearer/secured/ValidatorAccessTokenValidatorTest.java 19 个添加, 0 个删除...authbearer/secured/ValidatorAccessTokenValidatorTest.java
想要评论请 注册 或 登录