Project

General

Profile

Feature #33055

Support ADFS-style JWTs

Added by Alexander Olofsson 10 months ago. Updated 3 months ago.

Status:
Closed
Priority:
Normal
Category:
Authentication
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
Fixed in Releases:
Found in Releases:

Description

ADFS does a non-standard thing and passes the JWT key ID in the 'x5t' header field instead of the 'kid' field where the standard expects it to be.

Associated revisions

Revision e6a4bc1c (diff)
Added by Alexander Olofsson 6 months ago

Fixes #33055: Support ADFS-style JWTs

This uses the keyfinder method support from the JWT gem to look for keys
in both the standard 'kid' header as well as the non-standard 'x5t' one.

History

#1 Updated by The Foreman Bot 10 months ago

  • Assignee set to Alexander Olofsson
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/8679 added

#2 Updated by The Foreman Bot 6 months ago

  • Fixed in Releases 3.2.0 added

#3 Updated by Alexander Olofsson 6 months ago

  • Status changed from Ready For Testing to Closed

#4 Updated by Amit Upadhye 3 months ago

  • Category set to Authentication

Also available in: Atom PDF