You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Philip Zampino (Jira)" <ji...@apache.org> on 2021/03/25 17:58:00 UTC

[jira] [Created] (KNOX-2563) Metadata for server-managed token state should include everything needed for validation

Philip Zampino created KNOX-2563:
------------------------------------

             Summary: Metadata for server-managed token state should include everything needed for validation
                 Key: KNOX-2563
                 URL: https://issues.apache.org/jira/browse/KNOX-2563
             Project: Apache Knox
          Issue Type: Bug
          Components: Server
    Affects Versions: 1.6.0
            Reporter: Philip Zampino


In light of KNOX-2556, the metadata for server-managed token state should include everything needed for validation, including:
 * intended audience(s)
 * NotBeforeTime
 * issuer ?

such that the JWTProvider can more thoroughly validate a token UUID presented as a HTTP Basic password.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)