[CXF-5557] Convert MacAccessToken to HawkAccessToken - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.0.0-milestone2
Component/s: JAX-RS, JAX-RS Security
Labels:
None

Estimated Complexity:
Unknown

Description

CXF OAuth2 module implements the following draft:

https://tools.ietf.org/html/draft-hammer-oauth-v2-mac-token-05

which has been replaced, in scope of OAuth2, by

http://tools.ietf.org/html/draft-ietf-oauth-v2-http-mac-05

which takes a different approach toward it; the CXF MacAccessToken is kind of suspended in the air - dropping it does not seem like a good idea while the new OAuth2 effort is still under way.

https://github.com/hueniverse/hawk/blob/master/README.md

is the evolution of

https://tools.ietf.org/html/draft-hammer-oauth-v2-mac-token-05

and as it happens CXF MacAuthorizationScheme implements Hawk one to one, except for it does not support new Hawk extensions, and the optional in/out payload validation.

Supporting Hawk is a better alternative to seeing CXF MacAccessToken getting out of use; new OAuth2-approved MAC scheme can be supported in due time when it is all ready

Attachments

Activity

People

Assignee:: Sergey Beryozkin

Reporter:: Sergey Beryozkin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 12/Feb/14 11:14

Updated:: 11/Jul/14 12:50

Resolved:: 12/Feb/14 11:18