Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-8645

Fix default authentication scheme for JWT authentication filter

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 3.4.5, 3.5.1, 4.0.0
    • 4.0.0
    • JAX-RS Security
    • None
    • Unknown

    Description

      The default authentication scheme is as per spec "Bearer". This is described in RFC 6750  and the OAS spec

       

      For backwards compatibility you can fix this by setting the property "expectedAuthScheme" of JwtAuthenticationFilter to "Bearer".

      In the next major version the default should be updated and mentioned in the migration guide.

      Attachments

        Issue Links

          Activity

            People

              coheigea Colm O hEigeartaigh
              owulff Oliver Wulff
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: