Loading...

XML

Word

Printable

Type: Epic
Resolution: Done-Errata
Priority: Normal
Fix Version/s: 6.17.0
Affects Version/s: None
Component/s: Authentication, Registration, Users and Roles
Labels:
- RFE
- committed
- exception
- team-triaged

Epic Name:
Invalidating JWT for global registration
Satellite Team:

Rocket
Target Version:

6.17.0
Blocked:
False
PX Impact Score:
PX Priority Data:

Release Note Type:
Feature
Release Note Text:

Hide
.Invalidation of registration tokens

You can now invalidate registration JSON Web Tokens (JWTs) that are used to authenticate the registration call from a host to Satellite or Capsule.
Once you invalidate the JWTs, users can no longer use their existing JWTs to register hosts.

Show
.Invalidation of registration tokens You can now invalidate registration JSON Web Tokens (JWTs) that are used to authenticate the registration call from a host to Satellite or Capsule. Once you invalidate the JWTs, users can no longer use their existing JWTs to register hosts.
Release Note Status:
Done

Description

Currently, once a JWT is issued for global registration, there is no clear mechanism for invalidating the token if it becomes compromised or if it is no longer needed. This can potentially expose the system to security vulnerabilities and misuse. We need to implement invalidating JWT tokens manually.

Scope

The users with the “Edit Users” permissions can invalidate ALL JWT token for other users.

A user can invalidate self's token
Conventionally, Admin can invalidate self’s and other users tokens

Out of the scope

Managing JWTs and storing them in the database.
Invalidate one/few JWT(s) of a single/all user(s).
View JWT for user as it is not stored or managed.

Refinement Doc: https://docs.google.com/document/d/1B8oiswj7Fl8FqSSsD6pZhLQ0Ky5D6S6acHuIrrQ6mZ8/edit

is blocked by

SAT-30236 Disable "invalidate Token" if there is no token for the user.

To Do

is depended on by

SAT-2340 [RFE] Global Registration: Allow invalidating all JWT registration tokens for a user

Closed

links to

Community post

RHEA-2025:148331 Satellite 6.17.0 release

Assignee:: Girija Soni

Reporter:: Kenny Tordeurs

QA Contact:: Shweta Singh

Doc Contact:: Lena Ansorgová

Reviewer:: Nofar Alfassi

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2024/08/21 1:21 PM

Updated:: 2025/05/06 8:09 PM

Resolved:: 2025/05/06 5:09 PM

Details

Description

Description

Scope

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates