You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@syncope.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2017/06/27 14:14:00 UTC

[jira] [Created] (SYNCOPE-1129) Third Party JWT SSO integration

Colm O hEigeartaigh created SYNCOPE-1129:
--------------------------------------------

             Summary: Third Party JWT SSO integration
                 Key: SYNCOPE-1129
                 URL: https://issues.apache.org/jira/browse/SYNCOPE-1129
             Project: Syncope
          Issue Type: New Feature
            Reporter: Colm O hEigeartaigh
            Assignee: Francesco Chicchiriccò
             Fix For: 2.0.4


This task is to support SSO using third party JWT tokens.

It involves two tasks:

a) Create a new interface extending JwsSignatureVerifier to provide a method to resolve a JWT subject into Syncope username (known user).

b) When processing a received token, if the issuer is different from the known issuer ("jwtIssuer" in security.properties), then instead of retrieving the default jwsSignatureVerifier implementation, the authentication component will enable the ClassPathScanImplementationLookup to dynamically discover an implementation of the interface above.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)