You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Jeff Storck (JIRA)" <ji...@apache.org> on 2017/09/27 13:33:00 UTC

[jira] [Created] (KNOX-1069) KnoxSSO token audience config should trim values

Jeff Storck created KNOX-1069:
---------------------------------

             Summary: KnoxSSO token audience config should trim values
                 Key: KNOX-1069
                 URL: https://issues.apache.org/jira/browse/KNOX-1069
             Project: Apache Knox
          Issue Type: Improvement
          Components: KnoxSSO
    Affects Versions: 0.13.0
            Reporter: Jeff Storck
            Priority: Minor


knoxsso.token.audiences can be set to a comma-separated list of values.  Those values can end up containing spaces, depending on how the list is configured.  For example:

{code:xml}
        <param>
           <name>knoxsso.token.audiences</name>
           <value>foo,bar, baz</value>
        </param>
{code}

With that config, the token seen by the receiving service will see three audiences, "foo", "bar", and " baz". Notice the space in front of baz.

If the list is parsed and the values are trimmed, it might avoid confusion for services that need to parse that list and match values.  Other areas within Knox (such as federation filters) should also trim the values in the list for matching purposes.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)