This task is to support SSO using third party JWT tokens.
It involves two tasks:
a) Create a new interface extending JwsSignatureVerifier to provide a method to resolve a JWT subject into Syncope username (known user).
b) When processing a received token, if the issuer is different from the known issuer ("jwtIssuer" in security.properties), then instead of retrieving the default jwsSignatureVerifier implementation, the authentication component will enable the ClassPathScanImplementationLookup to dynamically discover an implementation of the interface above.
- is broken by
SYNCOPE-1149 Access token still required for the third party JWT SSO integration scenario
- links to