You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Philip Zampino (Jira)" <ji...@apache.org> on 2021/03/25 17:58:00 UTC
[jira] [Created] (KNOX-2563) Metadata for server-managed token
state should include everything needed for validation
Philip Zampino created KNOX-2563:
------------------------------------
Summary: Metadata for server-managed token state should include everything needed for validation
Key: KNOX-2563
URL: https://issues.apache.org/jira/browse/KNOX-2563
Project: Apache Knox
Issue Type: Bug
Components: Server
Affects Versions: 1.6.0
Reporter: Philip Zampino
In light of KNOX-2556, the metadata for server-managed token state should include everything needed for validation, including:
* intended audience(s)
* NotBeforeTime
* issuer ?
such that the JWTProvider can more thoroughly validate a token UUID presented as a HTTP Basic password.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)