Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 1.10.15.Final, 1.15.6.Final, 1.17.0.Final
Affects Version/s: 1.10.14.Final, 1.15.5.Final
Component/s: Realms
Labels:
None

Release Note Text:
undefined
Git Pull Request:
https://github.com/wildfly-security/wildfly-elytron/pull/1562, https://github.com/wildfly-security/wildfly-elytron/pull/1563

The current implementation of the cache inside the JwkManager just caches by the jwks url and it does take into account if a new kid is passed. This avoids the rotation of keys because the new key is not loaded until the current cache expires.

The idea is going to be always refreshing the jwks url if the kid is new. Just adding a new time option to avoid flooding of the endpoint (a minimum time in which consecutive requests are not allowed).

is incorporated by

JBEAP-22338 [GSS](7.4.z) ELY-2194 - JWK implementation in JwkManager does not work properly on key rotation

Closed

JBEAP-22339 [GSS](7.3.z) ELY-2194 - JWK implementation in JwkManager does not work properly on key rotation

Closed

WFCORE-5567 Upgrade WildFly Elytron to 1.17.0.Final

Closed

Assignee:: Ricardo Martin Camarero

Reporter:: Ricardo Martin Camarero

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2021/08/17 8:34 AM

Updated:: 2021/09/23 9:13 PM

Resolved:: 2021/08/31 5:15 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates