[AMBARI-15479] JwtAuthenticationFilter needs to accommodate null JWT expiration time - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: None
Component/s: ambari-server
Labels:
None

Description

Current validation of the JWT token within the SSO cookie interprets no expiration date as expired and redirects to acquire a new cookie. In the JWT specification exp is an optional claim however. KnoxSSO is leveraging this to mean that the token lifecycle should be tied to that of the SSO cookie itself and not timeout from underneath the cookie.

This minor change will allow null expiration times within the JWT token to be considered valid.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

AMBARI-15479-001.patch
18/Mar/16 13:05
3 kB
Larry McCay
AMBARI-15479-002.patch
11/Apr/16 12:37
3 kB
Larry McCay
AMBARI-15479-003.patch
13/Apr/16 14:03
3 kB
Larry McCay

Issue Links

links to

ReviewBoard

mentioned in: Page Loading...

Activity

People

Assignee:: Larry McCay

Reporter:: Larry McCay

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 18/Mar/16 13:02

Updated:: 19/Apr/16 17:10

Resolved:: 19/Apr/16 17:09