Loading...

XML

Word

Printable

Type: Story
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
- cost-onprem-0.2

Epic Link:
CoP - Authentication & Authorization Migration
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

The ros-ocp-backend currently supports OAuth 2.0 authentication through Kubernetes TokenReview API but lacks automatic token refresh capabilities. When tokens expire, clients receive 401 Unauthorized responses and must handle token renewal themselves.

We need to investigate what changes are required to implement proper token refresh handling.

The current implementation validates each request independently using Kubernetes TokenReview API and can detect expired tokens through error handling but doesn't provide any refresh mechanism.

is cloned by

FLPATH-2848 [spike]: Investigate how to migrate the current auth design with envoy sidecars for each component to a single API Gateway

In Progress

FLPATH-2838 Use Authorino dedicated instance to remove dependency with Authorino Operator

ON_QA

Assignee:: Jordi Gil

Reporter:: Gloria Ciavarrini

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2025/10/10 12:53 PM

Updated:: 2025/11/30 10:46 AM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates