Uploaded image for project: 'JBoss Transaction Manager'
  1. JBoss Transaction Manager
  2. JBTM-3309

Investigate using MicroProfile JSON Web Token to secure interaction with an LRA coordinator

    Details

    • Type: Enhancement
    • Status: Pull Request Sent (View Workflow)
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: 5.10.4.Final
    • Fix Version/s: 5.next
    • Component/s: LRA
    • Labels:
      None

      Description

      The Narayana implementation of the MicroProfile LRA specification uses a JAX-RS filter to communicate with a remote coordinator. The interaction is currently insecure. This issue is to investigate the best way of securing this channel. Since the JAX-RS filter is applied to the MicroProfile service we should initially investigate the MicroProfile security solution (MicroProfile JSON Web Token).

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                mkunwar1 Mayank Kunwar
                Reporter:
                mmusgrov Michael Musgrove
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: