Uploaded image for project: 'Solr'
  1. Solr
  2. SOLR-12121

JWT Authentication plugin

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 8.1
    • Component/s: Authentication
    • Labels:
      None

      Description

      A new Authentication plugin that will accept a Json Web Token (JWT) in the Authorization header and validate it by checking the cryptographic signature. The plugin will not perform the authentication itself but assert that the user was authenticated by the service that issued the JWT token.

      JWT defined a number of standard claims, and user principal can be fetched from the sub (subject) claim and passed on to Solr. The plugin will always check the exp (expiry) claim and optionally enforce checks on the iss (issuer) and aud (audience) claims.

      The first version of the plugin will only support RSA signing keys and will support fetching the public key of the issuer through a Json Web Key (JWK) file, either from a https URL or from local file.

        Attachments

        1. image-2018-08-27-13-04-04-183.png
          126 kB
          Jan Høydahl

          Issue Links

            Activity

              People

              • Assignee:
                janhoy Jan Høydahl
                Reporter:
                janhoy Jan Høydahl
              • Votes:
                1 Vote for this issue
                Watchers:
                8 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1h 40m
                  1h 40m