You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@knox.apache.org by "Jeff Storck (JIRA)" <ji...@apache.org> on 2017/09/27 13:33:00 UTC
[jira] [Created] (KNOX-1069) KnoxSSO token audience config should
trim values
Jeff Storck created KNOX-1069:
---------------------------------
Summary: KnoxSSO token audience config should trim values
Key: KNOX-1069
URL: https://issues.apache.org/jira/browse/KNOX-1069
Project: Apache Knox
Issue Type: Improvement
Components: KnoxSSO
Affects Versions: 0.13.0
Reporter: Jeff Storck
Priority: Minor
knoxsso.token.audiences can be set to a comma-separated list of values. Those values can end up containing spaces, depending on how the list is configured. For example:
{code:xml}
<param>
<name>knoxsso.token.audiences</name>
<value>foo,bar, baz</value>
</param>
{code}
With that config, the token seen by the receiving service will see three audiences, "foo", "bar", and " baz". Notice the space in front of baz.
If the list is parsed and the values are trimmed, it might avoid confusion for services that need to parse that list and match values. Other areas within Knox (such as federation filters) should also trim the values in the list for matching purposes.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)