Uploaded image for project: 'Syncope'
  1. Syncope
  2. SYNCOPE-1129

Third Party JWT SSO integration

VotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Closed
    • Major
    • Resolution: Fixed
    • None
    • 2.0.4, 2.1.0
    • core
    • None

    Description

      This task is to support SSO using third party JWT tokens.

      It involves two tasks:

      a) Create a new interface extending JwsSignatureVerifier to provide a method to resolve a JWT subject into Syncope username (known user).

      b) When processing a received token, if the issuer is different from the known issuer ("jwtIssuer" in security.properties), then instead of retrieving the default jwsSignatureVerifier implementation, the authentication component will enable the ClassPathScanImplementationLookup to dynamically discover an implementation of the interface above.

      Attachments

        Issue Links

        is broken by

        Bug - A problem which impairs or prevents the functions of the product. SYNCOPE-1149 Access token still required for the third party JWT SSO integration scenario

        • Major - Major loss of function.
        • Closed
        links to

        Web Link ML thread

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            ilgrosso Francesco Chicchiriccò
            coheigea Colm O hEigeartaigh
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment