Skip to content
代码片段 群组 项目
  1. 11月 07, 2022
  2. 11月 06, 2022
    • ConfluentSemaphore's avatar
    • Sushant Mahajan's avatar
      AUTHN-1001: Add support for using providerId to fetch token verification key. (#7818) · 95f4868e
      Sushant Mahajan 创作于
      * We maintain a cache as DefaultAuthCache to store mapping between issuer name and JWTKeysSets (public key).
      * Currently, we use the issuer name to fetch the pub key to verify JWT token signature. However, using only the issuer name might result in collisions as customers can use 3rd party providers which have the same name.
      * To remedy this we can use the providerId as the key in the cache. The providerId will be unique and will no longer cause collisions.
      * We have added a new callback class `PreTokenValidationExtensionsValidatorCallback` which is called before invoking `OAuthBearerValidatorCallback` and it sets up the providerId in the context. When OAuthBearerValidatorCallback is called it can see the providerId and pass it along to token processing methods (details below). We added a new class `PreTokenValidationExtensionsValidatorCallback` because it needs to be invoked before `OAuthBearerValidatorCallback` and it does not deal with the token at all. If the customer is using some other callback handler which does not recognize  `PreTokenValidationExtensionsValidatorCallback`, the appropriate error handling for compatibility has been added to `OAuthBearerSaslServer`.
      95f4868e
  3. 11月 05, 2022
  4. 11月 04, 2022
  5. 11月 03, 2022
加载中